No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Governance

What Kraken’s New CCO Needs to Know (and So Do You)

Volatile crypto industry must address interconnected risk

by Gaurav Kapoor
April 12, 2023
in Governance, Risk
first day_frn

Two weeks after C.J. Rinaldi was announced as the chief compliance officer of Kraken, the cryptocurrency platform settled SEC charges, accepted a $30 million fine and agreed to shutter its staking services in the U.S. Rinaldi is no stranger to the volatile crypto market, having served in the same role at Blockchain.com, but his new job comes at a particularly precarious time, both for Kraken and the crypto industry as a whole, coming just a few months after the spectacular collapse of FTX. MetricStream co-CEO and co-founder Gaurav Kapoor shares his advice for Kraken’s new CCO (and other corporate leaders).

The SEC’s decision to fine crypto exchange Kraken $30 million for failing to register its cryptocurrency staking program is just the latest example of how decentralized digital-asset businesses are increasingly beholden to compliance standards as their practices become more mainstream. In cryptocurrency markets, decentralization and potential for innovation exist side by side with big risk, market volatility and scant — but growing — regulatory controls.

GRC practices exist to prevent potentially detrimental oversight and protect against fraudulent practices that could devastate an industry, as with the collapse of crypto exchange FTX late last year. Failures of this magnitude are typically unheard of in businesses that are aligned to applicable risk management and compliance standards and regulations.  

With increased regulatory scrutiny, there is optimism: Kraken is in the process of fixing its compliance controls under the leadership of a new chief compliance officer, who began in the role just before the SEC settlement was announced. The company has also agreed to invest in its compliance technology and training. 

This is a start, but only adding training and controls is not enough. Compliance leaders must keep in mind that all risk is connected, across business units and vendors. Adherence to GRC best practices will ensure that the company stays on top of regulations and avoids future settlements.

Decentralized businesses are here to stay

Despite the current scrutiny on crypto and the metaverse, digital currencies and the decentralized financial ecosystem are here to stay. The industry may feel a short-term impact following the events at Kraken and FTX — each highlighting, in their own way, the absence of corporate governance — but digital assets are likely to come back stronger within a regulated environment that offers the checks and balances required for stability.

Leaders must remember that it is possible to innovate while still maintaining an operative model of governance, risk and compliance. As the acceleration of regulation increases to match the pace of disruption, choosing to implement a solid GRC program ensures businesses are not only up to speed with accepted practices and standards but that they’re establishing a level of visibility and trustworthiness that will lead to success in the long term.

Learning from past financial crises

As with any rapidly evolving technology, regulation of the digital-asset markets is still catching up with day-to-day transacting as various government bodies determine the best path forward. In the meantime, the task of governance falls on individual business leaders, who must come together to grow responsibly.

What’s happening now with crypto is not the first time we’ve seen crises in the financial industry promote increased oversight and regulation. The Dodd-Frank Act was passed in 2010 in response to the financial crisis of 2008, establishing unprecedented regulatory measures in the financial services industry. Dodd-Frank was designed to keep consumers and the economy safe from risky investment behaviors by insurance companies and banks.

This is a lesson to others in this industry as well: We must learn from history to spot potential financial disasters (and scams) before they blot balance sheets and compromise customer relations. We cannot allow the fear of missing big returns to drive investments, especially when we recognize they lack clear checks and balances. Twelve years after the passage of Dodd-Frank, the collapse of Silicon Valley Bank and Signature Bank in March — within a week of each other — suggests there are still lessons to be learned here.

svb_f
Risk

Risky Business: Important Lessons From SVB’s Demise

by Atul Vashistha
March 28, 2023

When all is said and done, it’s likely that Silicon Valley Bank’s failure will be traced back to one serious flaw — shoddy risk management.

Read more

Remember that risks are interconnected

The past few years have taught us that unregulated industries, however flashy, sow considerable risks — just look at the diversity and scale of financial losses. Kraken’s SEC fine may have been avoidable with the right measures in place. That $30 million loss doesn’t include interconnected losses by partners, investors and other parties.

Businesses venturing into new markets should be aggressive at investing in the tenets of a secure, viable and robust risk and compliance program. All risks — cyber, operational, regulatory, third party — can arise from interlinks between digital currencies and the wider financial system.

A connected governance, risk and compliance strategy supports a holistic, integrated approach to risk management and is critical to achieving resilience in difficult times. By ensuring collaboration between teams, businesses are better enabled to assess, manage and mitigate strategic risks, leading to more informed decisions.

Continually update controls as regulation evolves

As cryptocurrency is decentralized by design, local and federal regulators may not have jurisdiction or enforcement capabilities based on current regulations. However, there are steps being taken by regulatory bodies that suggest the industry is heading in a stabilizing direction. With crypto-related cybercrime expected to reach $30 billion by 2025, regulatory agencies have been working to enforce both existing anti-fraud measures and new regulations with cryptocurrency providers.

In the U.S., the Infrastructure Investment and Jobs Act, signed into law by President Joe Biden in November 2021, extends information-reporting requirements to digital assets. The FDIC in 2022 declared that FDIC–supervised institutions that engage or intend to engage in crypto-related activities should notify the agency and provide information that will allow it to “assess the safety and soundness, consumer protection, and financial stability implications of such activities.” Similarly, Commodity Futures Trading Commission (CFTC) Commissioner Christy Goldsmith Romero has affirmed that regulation by the agency is the answer for dealing with the risk associated with crypto as more traditional financial institutions show an interest in digital currencies.

European regulatory authorities are drafting crypto rules not just for ensuring consumer protection and preventing financial crime but also to reduce the carbon footprint of cryptocurrencies. Meanwhile, the Bank of England earlier this year published a response to the potential risks of crypto assets to UK financial stability, saying, “Where crypto technology is performing an equivalent economic function to one performed in the traditional financial sector, the [Financial Policy Committee] judges this should take place within existing regulatory arrangement, and that the regulatory perimeter be adapted as necessary to ensure an equivalent regulatory outcome.” Likewise, regulatory authorities in Canada, Singapore, Japan, India and other countries have issued updates on their work to develop crypto-focused regulations and frameworks. 

For decentralized businesses, this means that compliance must be a priority — not just a box-ticking exercise. Business leaders like Rinaldi and others would do well to remember that meeting the standards of compliance is just the first step in an effective GRC strategy. Once standards are met, leaders must continually monitor for changes in policy and regulation like the above, and then adjust strategies and risk controls to keep steering the organization toward a successful future.


Tags: Cryptocurrency
Previous Post

Learning to Accept Feedback Can Unlock Positive Office Culture

Next Post

Survey: 3 in 4 FinServ Firms Spending More on Compliance

Gaurav Kapoor

Gaurav Kapoor

Gaurav Kapoor is co-CEO and co-founder of MetricStream Solutions & Services. Gaurav has been involved with the company since its inception and is responsible for strategy, marketing, solutions and customer engagement. He served as the CFO of MetricStream until 2010. Previously, Gaurav held executive positions at OpenGrowth and ArcadiaOne. Prior, he spent several years in business, marketing and operations roles at Citibank in Asia and in the U.S. He also serves on the board of Regalix, a digital innovation and marketing company.

Related Posts

crypto exchange

70% of UK Compliance Pros Fear Crypto-Enabled Money Laundering

by Staff and Wire Reports
April 20, 2023

Nearly 70% of individuals working in compliance in the UK are worried about the growing threat of money laundering via...

ftx arena miami

2023: The Year of Crypto Compliance

by Ben Richmond
January 11, 2023

The November collapses of FTX and BlockFi, two of the world’s biggest cryptocurrency exchanges, were shocking — and devastating for...

The North Korean Crypto Threat_f

The North Korean Crypto Threat

by Corporate Compliance Insights
October 20, 2022

How to challenge North Korea's entry into the crypto field of play Facing the Latest Challenge to the Crypto Ecosystem...

unpacking crypto eo

Unpacking Biden’s Crypto Executive Order

by Harriet Christie
July 27, 2022

Rather than an exhaustive dossier of rules and regulations providing next steps for crypto firms, President Joe Biden’s March 9...

Next Post
company budget

Survey: 3 in 4 FinServ Firms Spending More on Compliance

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment Sanctions SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT