Daily Compliance Brief — U.S. Regulators Emphasize Third-Party Risk in Financial Crime Controls

March 18, 2026

Signal

U.S. regulators have recently reiterated the importance of robust oversight of third-party relationships within financial crime compliance programs.

Supervisory communications highlight risks associated with intermediaries, service providers, and external partners that may introduce exposure to money laundering, sanctions evasion, or fraud if not adequately controlled.

The focus reflects growing concern that third-party ecosystems are increasingly leveraged to bypass core compliance controls, particularly in cross-border and digital service environments.

Why it matters

Financial institutions should reassess third-party risk management frameworks, including due diligence, ongoing monitoring, and contractual control mechanisms.

Compliance teams may need to strengthen visibility into third-party activities, ensuring that transaction monitoring and sanctions screening extend effectively to outsourced or partner-driven operations.

Organizations should also review governance structures to ensure clear accountability and escalation pathways for risks originating from third-party relationships.