Operations
& Audit.

Independent periodic audits of compliance controls, designed to provide the board with an objective view of whether the compliance framework is working, not just whether it exists. We audit with the same rigour the FCA applies in supervisory review.

• Scope-based audit against compliance monitoring programme
• Controls testing, documented sampling and evidence review
• AML/KYC specific audit, BWRA, CDD, Travel Rule, SAR
• Thematic deep dives, Consumer Duty, SMCR, DORA
• Board-ready report with RAG-rated findings and remediation

Tailored, CPD-aligned regulatory and financial crime training for boards, senior managers, and operational teams. Role-specific content, not generic e-learning modules. Designed to embed a genuine culture of compliance, not tick a box on an annual training record.

• Board-level regulatory awareness sessions
• Senior manager SMCR and personal accountability training
• MLRo and compliance team financial crime training
• Operational team AML/KYC and fraud awareness
• Completion certification and CPD credit documentation

Enterprise risk frameworks, conduct risk models, and financial crime risk assessments built to provide the board with a structured, evidence-based view of the firm's risk profile. Outputs are designed to satisfy FCA supervisory expectations and support ICAAP / ILAAP where applicable.

• Enterprise risk framework design and calibration
• Conduct risk model, retail and wholesale environments
• Financial crime risk assessment, digital asset specific
• Risk appetite statement, board-level articulation
• Residual risk scoring and mitigation action plans

Independent assessment of the firm's compliance framework against current regulatory requirements, useful for newly authorised firms, firms preparing for supervisory review, or businesses that have grown faster than their compliance infrastructure. Prioritised remediation with clear timelines.

• Full compliance framework review against FCA / MiCA requirements
• Sourcebook-by-sourcebook mapping of gaps
• Consumer Duty outcomes assessment, four outcome areas
• DORA (EU) operational resilience gap review
• Prioritised remediation roadmap, board-ready output

When the FCA issues a section 166 skilled person review, a Dear CEO letter, or direct supervisory feedback, the response must be precise and credible. We support firms in managing the supervisory dialogue, preparing written responses, and designing and executing remediation programmes.

• Section 166 skilled person review preparation
• FCA information request responses
• Remediation programme design and project management
• Voluntary requirement (VREQ) compliance monitoring
• Supervisory correspondence strategy

For firms operating across UK and EU jurisdictions, keeping pace with regulatory change across both perimeters is operationally demanding. We provide a monitoring and horizon-scanning service, flagging material changes to FCA, MiCA, AMLD6, and DORA requirements as they develop.

• Fortnightly regulatory change briefings
• FCA consultation paper and policy statement tracking
• ESMA regulatory technical standards (RTS) monitoring
• Impact assessments for material regulatory changes
• Framework update recommendations