To ensure that organisations' operations comply with relevant legislation, regulation and policies through reviewing and implementing policies and procedures.
This occupation is found in a range of organisations that are required to meet compliance and risk conditions set out in legislation. This could include the requirement of regulators in areas such as financial crime and operational risk.
To meet these requirements many organisations will have dedicated risk and compliance departments that are experts in the legislation and regulative requirements. They provide proactive support and guidance to internal business areas to ensure that the organisation meets the requirements, balanced against achieving appropriate customer outcomes. In some organisations, this expertise may be embedded in the business areas themselves. Specialists may work in small, medium or large firms and increasingly may be working from home or with some access to office facilities.
Risk and compliance specialists operate in many sectors where regulation and legislation is evident, including banking and finance, gambling and gaming, healthcare, utilities and as consultants.
The broad purpose of the occupation is to provide high quality input and advice to the business in their specialist area(s) of expertise. The specialist areas may include, risk, financial crime, compliance, modelling and analysing data, customer due diligence, cyber security, governance, anti-money laundering, Environmental, Social & Governance (ESG) and climate risk.
A senior compliance and risk specialist manages complex problems, implements any new legal and regulatory requirement and works with senior people in the organisation.
As working from home becomes more common, proficiency in digital communications is a core requirement to communicate with the business and other members of the team.
In their daily work, an employee in this occupation interacts with senior personnel in their organisation and others who engage in risk-based activities. They are required to manage differing views and influence others to achieve collaborative solutions including regulators/ legislative experts/ policy staff.
An employee in this occupation will be responsible for planning and developing courses of action to maintain risk and compliance in line with organisational risk appetite and regulatory requirements. They will also initiate and lead tasks and processes, taking responsibility, where relevant, for the work and roles of others and the allocation of resources.
There will be a need to exercise broad autonomy and judgement adhering to ethical standards and applying technical expertise whilst applying deep underpinning knowledge of risk and compliance frameworks, policies, and procedures. This knowledge may cover compliance or risk functions or be a blend of both depending on the organisation.
The employee in this area of work has the capability to influence senior members of the organisation as there can often be differing views on the appropriate action to take. Employees will need to possess excellent communication and negotiation skills as well as resilience and persistence when ensuring policy and plans are implemented to conclusion.
This is a summary of the key things that you – the apprentice and your employer need to know about your end-point assessment (EPA). You and your employer should read the EPA plan for the full details. It has information on assessment method requirements, roles and responsibilities, and re-sits and re-takes.
An EPA is an assessment at the end of your apprenticeship. It will assess you against the knowledge, skills, and behaviours (KSBs) in the occupational standard. Your training will cover the KSBs. The EPA is your opportunity to show an independent assessor how well you can carry out the occupation you have been trained for.
Your employer will choose an end-point assessment organisation (EPAO) to deliver the EPA. Your employer and training provider should tell you what to expect and how to prepare for your EPA.
The length of the training for this apprenticeship is typically 36 months. The EPA period is typically 5 months.
The overall grades available for this apprenticeship are:
When you pass the EPA, you will be awarded your apprenticeship certificate.
The EPA gateway is when the EPAO checks and confirms that you have met any requirements required before you start the EPA. You will only enter the gateway when your employer says you are ready.
The gateway requirements for your EPA are:
For the senior compliance and risk specialist, the qualification required is:
CISI Diploma in Investment Compliance
IRM International Certificate in Enterprise Risk Management
IRM International Certificate in Financial Services Risk Management
IRM International Diploma in Risk Management
CBI Certificate in Climate Risk
ICA International Diploma in Governance, Risk and Compliance
ICA International Diploma in Financial Crime Prevention
ICA International Diploma in Anti Money Laundering
ICA International Diploma in Managing Sanctions Risk
CICM Level 5 Diploma in Credit and Collections MCICM (Grad)
Professional discussion underpinned by a portfolio of evidence
You will have a professional professional discussion with an independent assessor. It will last 90 minutes. They will ask you at least 10 questions. The questions will be about certain aspects of your occupation. You need to compile a portfolio of evidence before the EPA gateway. You can use it to help answer the questions.
Project with report and Presentation with questions
You will complete a project and write a report. The title and scope must be agreed with the EPAO at the gateway. The report should be a maximum of 3500 words (with a 10% tolerance).
You need to prepare and give a presentation to an independent assessor. Your presentation slides and any supporting materials should be submitted at the same time as the project output. The presentation with questions will last at least 60 minutes. The independent assessor will ask at least 8 questions about the project and presentation.
The EPAO will confirm where and when each assessment method will take place.
You should speak to your employer if you have a query that relates to your job.
You should speak to your training provider if you have any questions about your training or EPA before it starts.
You should receive detailed information and support from the EPAO before the EPA starts. You should speak to them if you have any questions about your EPA once it has started.
If you have a disability, a physical or mental health condition or other special considerations, you may be able to have a reasonable adjustment that takes this into account. You should speak to your employer, training provider and EPAO and ask them what support you can get. The EPAO will decide if an adjustment is appropriate.
This apprenticeship aligns with The Chartered Institute for Securities and Investment (CISI) for full membership of the Institute and MCSI designatory letters.
Please contact the professional body for more details.
This apprenticeship aligns with The Institute of Risk Management for recognition as a Certificate Member (IRMCert) when completing the Certificate qualifications and Graduate Member (GradIRM) when completing the Diploma.
Please contact the professional body for more details.
This apprenticeship aligns with The Chartered Banker Institute for recognition as a Certificated Member (CCBI) and able to use the professional designation ‘CRP’ (Climate Risk Professional).
Please contact the professional body for more details.
This apprenticeship aligns with The International Compliance Association for access to full professional membership of the ICA and permits the use of the MICA designatory letters.
Please contact the professional body for more details.
This apprenticeship aligns with The Chartered Institute of Credit Management for Graduate Membership MCICM(Grad).
Please contact the professional body for more details.
This occupation is found in a range of organisations that are required to meet compliance and risk conditions set out in legislation. This could include the requirement of regulators in areas such as financial crime and operational risk.
To meet these requirements many organisations will have dedicated risk and compliance departments that are experts in the legislation and regulative requirements. They provide proactive support and guidance to internal business areas to ensure that the organisation meets the requirements, balanced against achieving appropriate customer outcomes. In some organisations, this expertise may be embedded in the business areas themselves. Specialists may work in small, medium or large firms and increasingly may be working from home or with some access to office facilities.
Risk and compliance specialists operate in many sectors where regulation and legislation is evident, including banking and finance, gambling and gaming, healthcare, utilities and as consultants.
The broad purpose of the occupation is to provide high quality input and advice to the business in their specialist area(s) of expertise. The specialist areas may include, risk, financial crime, compliance, modelling and analysing data, customer due diligence, cyber security, governance, anti-money laundering, Environmental, Social & Governance (ESG) and climate risk.
A senior compliance and risk specialist manages complex problems, implements any new legal and regulatory requirement and works with senior people in the organisation.
As working from home becomes more common, proficiency in digital communications is a core requirement to communicate with the business and other members of the team.
In their daily work, an employee in this occupation interacts with senior personnel in their organisation and others who engage in risk-based activities. They are required to manage differing views and influence others to achieve collaborative solutions including regulators/ legislative experts/ policy staff.
An employee in this occupation will be responsible for planning and developing courses of action to maintain risk and compliance in line with organisational risk appetite and regulatory requirements. They will also initiate and lead tasks and processes, taking responsibility, where relevant, for the work and roles of others and the allocation of resources.
There will be a need to exercise broad autonomy and judgement adhering to ethical standards and applying technical expertise whilst applying deep underpinning knowledge of risk and compliance frameworks, policies, and procedures. This knowledge may cover compliance or risk functions or be a blend of both depending on the organisation.
The employee in this area of work has the capability to influence senior members of the organisation as there can often be differing views on the appropriate action to take. Employees will need to possess excellent communication and negotiation skills as well as resilience and persistence when ensuring policy and plans are implemented to conclusion.
| Duty | KSBs |
|---|---|
|
Duty 1 Safeguard the organisation from risks relevant to your role, for example, money laundering, terrorist financing risk, conduct risk, operational risk, climate change risk by ensuring monitoring structures and processes under your control are effective. |
|
|
Duty 2 Use relevant frameworks to assess, manage and mitigate risks relevant to your area of expertise, adhering to organisational policies and procedures. |
|
|
Duty 3 Analyse a wide range of data, including observations and stakeholder interviews to understand risks relative to your role and form recommendations for change. |
|
|
Duty 4 Provide specialist compliance and risk advice and consultancy to leaders on risk, financial crime, compliance, or modelling and analysing data. |
|
|
Duty 5 Build relationships and influence with stakeholders to support and embed a risk-based culture, improve compliance and reduce risk factors. |
|
|
Duty 6 Maintain an understanding of up to date legal and regulatory changes relevant to your area, taking responsibility for ensuring any changes are communicated effectively and embedded. |
|
|
Duty 7 Provide proactive support, guidance and challenge to business areas to ensure that the organisation meets legal and regulatory obligations balanced against achieving appropriate customer outcomes. |
|
|
Duty 8 Design and implement risk and/or compliance activity relevant to your area to support the organisation’s goals and legal and regulatory requirements, for example, Financial Conduct Authority, Prudential Regulation Authority. |
|
|
Duty 9 Collaborate across your organisation to ensure consistent, joined up approaches to policies and processes relevant to your role. |
|
|
Duty 10 Share your knowledge and expertise with others to support the development of knowledge and skills in your team or department. |
|
|
Duty 11 Develop and deliver new ways of working which strengthen and promote regulatory compliance and continuous improvement. |
|
|
Duty 12 Create and maintain documentation, including reporting requirements, following records management process and audit requirements to evidence legal and regulatory compliance relative to your role. |
|
|
Duty 13 Adapt to technological advancements and changes which impact the compliance and risk management landscape. |
K1: The features and principles of the legal and regulatory framework in their industry.
Back to Duty
K2: The role of regulators in their industry, their objectives and primary functions.
Back to Duty
K3: The inter-relationships between different regulators and their organisation.
Back to Duty
K4: The implications of non-compliance on the organisation.
Back to Duty
K5: The history of the industry and the role their organisation plays in the wellbeing of society.
Back to Duty
K6: Factors that can change risk appetite in an organisation including competitor activity, political, social and environmental factors and how these can be mitigated.
Back to Duty
K7: Professional standards and best practice and how these are applied.
Back to Duty
K8: The role of their team or department, the different teams and organisations they work with and how they support them.
Back to Duty
K9: Approaches to identify customer segments and needs.
Back to Duty
K10: The policies and processes in place to ensure fair customer outcomes.
Back to Duty
K11: Financial and compliance risks within the organisation’s products and services available to customers.
Back to Duty
K12: The principles of excellent stakeholder management relative to their role.
Back to Duty
K13: The principles of communication techniques such as, active listening, team communications, business storytelling, negotiation techniques, conflict management and, diversity, equality and inclusivity considerations.
Back to Duty
K14: The features and principles of strategic planning relative to their role.
Back to Duty
K15: Continuous improvement principles and techniques relative to their role.
Back to Duty
K16: The systems, tools and processes required in the role such as the impact of technology on risk management, cyber security, AI, blockchain, digital tools.
Back to Duty
K17: Internal and external audit requirements and the responsibilities of the auditor and auditee.
Back to Duty
K18: The impact of data protection legislation and the processes for sharing and storing information safely and securely including risks to data from cybercrime.
Back to Duty
K19: The nature and importance of key climate, environmental and emerging sustainability risks, relative to compliance and risk, and how these may be managed.
Back to Duty
K20: The extent to which sustainable finance is incorporated in risk and compliance frameworks and the role of key stakeholders.
Back to Duty
S1: Think laterally, take a wide perspective of the issue at hand, consider aspects of a problem to formulate an operational or strategic plan.
Back to Duty
S2: Build reports to suit the requirement of the audience, for example departmental plans, key performance indicators (KPIs) and project reports.
Back to Duty
S3: Plan and organise own work to meet legal, regulatory, organisational deadlines.
Back to Duty
S4: Analyse and interpret information to assess whether it meets legal, regulatory, process or policy requirements.
Back to Duty
S5: Analyse information to identify key issues, draw conclusions and make recommendations.
Back to Duty
S6: Demonstrate different communication methods and adapt communication style to their audience, being clear on purpose of communication and outputs required, for example; verbal, written, virtual communication, presentations.
Back to Duty
S7: Demonstrate different communication styles such as, active listening, team communications, business storytelling, negotiation techniques, conflict management, cross-cultural communications, equality and inclusivity considerations.
Back to Duty
S8: Maintain documents in line with current regulation and policy.
Back to Duty
S9: Challenge and influence managers and colleagues on desired course of action
Back to Duty
S10: Build and maintain working relationships with stakeholders, contracting and managing stakeholder expectations.
Back to Duty
S11: Build trust with colleagues, collaborating to achieve results.
Back to Duty
S12: Manage conflict, demonstrating empathy and a desire to work towards win-win outcomes.
Back to Duty
S13: Lead others to achieve desired outcomes.
Back to Duty
S14: Apply continuous improvement techniques to deliver improved compliance and risk outcomes for the organisation, for example seek feedback and respond to improve performance.
Back to Duty
S15: Develop strategies to implement change.
Back to Duty
S16: Network with others in the profession to keep up to date with changes in the industry, best practice and potential opportunities.
Back to Duty
S17: Use digital tools for research, analysis, and to present data using visualisation techniques.
Back to Duty
S18: Demonstrate technology to others and keeps up to date with developments in IT relative to their role.
Back to Duty
S19: Handle data safely and securely and share information in compliance with data protection legislation and organisation’s policy.
Back to Duty
B1: Displays honesty and integrity - truthful in their actions. Shows integrity by doing the right thing, maintains confidentiality and acts with due care and diligence.
Back to Duty
B2: Takes ownership of continued professional development, acts as a role model and supports others in their development.
Back to Duty
B3: Takes an adaptable, evidence-based approach to decision making in the context of specific situations or environments.
Back to Duty
B4: Resilient in challenging, changing environments. Shows emotional intelligence to resolve conflicts when they arise.
Back to Duty
B5: Takes responsibility for decisions and procedures implemented.
Back to Duty
B6: Displays a growth mindset, learning from failures, spotting opportunities and overcoming challenges.
Back to Duty
B7: Collaborates and promotes teamwork across diverse teams; internal, external and across disciplines.
Back to Duty
Apprentices without level 2 English and maths will need to achieve this level prior to taking the End-Point Assessment. For those with an education, health and care plan or a legacy statement, the apprenticeship’s English and maths minimum requirement is Entry Level 3. A British Sign Language (BSL) qualification is an alternative to the English qualification for those whose primary language is BSL.
Level: 6 (non-degree qualification)
Ofqual regulated
Level: 5
Level: 5
Level: 7 (non-degree qualification)
Level: 5
Level: 6 (non-degree qualification)
Level: 6 (non-degree qualification)
Level: 6 (non-degree qualification)
Level: 6 (non-degree qualification)
Level: 5
Ofqual regulated
This standard aligns with the following professional recognition:
V1.1
This document explains the requirements for end-point assessment (EPA) for the senior compliance and risk specialist apprenticeship. End-point assessment organisations (EPAOs) must follow this when designing and delivering the EPA.
Senior compliance and risk specialist apprentices, their employers and training providers should read this document.
An approved EPAO must conduct the EPA for this apprenticeship. Employers must select an approved EPAO from the Education and Skills Funding Agency’s Register of end-point assessment organisations (RoEPAO).
A full-time apprentice typically spends 36 months on-programme (this means in training before the gateway) working towards competence as a senior compliance and risk specialist. All apprentices must spend at least 12 months on-programme. All apprentices must complete the required amount of off-the-job training specified by the apprenticeship funding rules.
This EPA has 2 assessment methods.
The grades available for each assessment method are:
Assessment method 1 - professional discussion:
Assessment method 2 - project report, presentation and questions:
The result from each assessment method is combined to decide the overall apprenticeship grade. The following grades are available for the apprenticeship:
|
On-programme (typically 36 months)
|
The apprentice must complete training to develop the knowledge, skills and behaviours (KSBs) of the occupational standard.
The apprentice must complete training towards English and maths qualifications in line with the apprenticeship funding rules. The apprentice must complete training towards one other qualification listed in the occupational standard. The qualification required is one from the following: CISI Diploma in Investment Compliance IRM International Certificate in Enterprise Risk Management IRM International Certificate in Financial Services Risk Management IRM International Diploma in Risk Management CBI Certificate in Climate Risk ICA International Diploma in Governance, Risk and Compliance ICA International Diploma in Financial Crime Prevention ICA International Diploma in Anti Money Laundering ICA International Diploma in Managing Sanctions Risk CICM Level 5 Diploma in Credit and Collections MCICM (Grad) For the professional discussion, the apprentice must compile a portfolio of evidence. For the report, presentation and questions, the apprentice must complete a project, on programme, in the last 6 months before gateway. |
|---|---|
|
End-point assessment gateway
|
The employer must be content that the apprentice is working at or above the occupational standard.
The apprentice’s employer must confirm that they think the apprentice:
The apprentice must have passed one of the mandated qualifications listed in the senior compliance and risk specialist occupational standard ST0363. CISI Diploma in Investment Compliance IRM International Certificate in Enterprise Risk Management IRM International Certificate in Financial Services Risk Management IRM International Diploma in Risk Management CBI Certificate in Climate Risk ICA International Diploma in Governance, Risk and Compliance ICA International Diploma in Financial Crime Prevention ICA International Diploma in Anti Money Laundering ICA International Diploma in Managing Sanctions Risk CICM Level 5 Diploma in Credit and Collections MCICM (Grad) The apprentice must have achieved English and maths qualifications in line with the apprenticeship funding rules. For the professional discussion the apprentice must submit a portfolio of evidence. For the project report, presentation and questions, the apprentice must submit a portfolio of evidence or work (a project) which has original and strategic impact and a maximum 300 word statement to give context to the evidence submitted so that the EPAO can set the title and scope for the project report. project requirements: The project must be sufficient in scope to ensure it allows the apprentice to meet the KSBs and mapped to this assessment method to the highest available grade. The EPAO will decide a suitable project report scope and title from the portfolio of evidence the apprentice has submitted. The employer and apprentice will not be involved in the decision. The apprentice must submit any policies and procedures as requested by the EPAO. |
|
End-point assessment (typically 5 months)
|
Grades available for each assessment method:
Professional discussion
Project report, presentation and questions
Overall EPA and apprenticeship can be graded:
|
|
Professional recognition
|
This apprenticeship aligns with The Chartered Institute for Securities and Investment (CISI) qualification. Successful completion of this qualification will give access to full membership of the Institute and MCSI designatory letters. This apprenticeship aligns with The Institute of Risk Management qualifications. Successful completion of a qualification would give recognition as a Certified Member (IRMCert) when completing the certificate qualifications and Graduate Member (GradIRM) when completing the diploma. This apprenticeship aligns with The Chartered Banker Institute qualification. An apprentice successfully completing the qualification would be eligible for recognition as a Certified Member (CCBI) and be able to use the professional designation 'CRP' (Climate Risk Professional). This apprenticeship aligns with The International Compliance Association qualifications. Successful completion of a qualification will give access to full professional membership of the ICA and permit the use of the MICA designatory letters. This apprenticeship aligns with The Chartered Institute of Credit Management qualification. An apprentice successfully completing this qualification would be eligible for Graduate Membership MCICM(Grad). |
|
Re-sits and re-takes
|
|
The EPA is taken in the EPA period. The EPA period starts when the EPAO confirms the gateway requirements have been met and is typically up to 5 months.
The expectation is that the EPAO will confirm the gateway requirements have been met and the EPA starts as quickly as possible.
The apprentice’s employer must confirm that they think their apprentice is working at or above the occupational standard. The apprentice will then enter the gateway. The employer may take advice from the apprentice's training provider(s), but the employer must make the decision.
The apprentice must meet the gateway requirements before starting their EPA.
These are:
Portfolio of evidence requirements:
Professional discussion: Apprentices must compile a portfolio of evidence during the on-programme period of the apprenticeship. It should only contain evidence related to the KSBs that will be assessed by this assessment method. It will typically contain 15 discrete pieces of evidence. Evidence must be mapped against the KSBs. EPAOs should provide mapping documents for the apprentice to complete prior to submission.
Evidence may be used to demonstrate more than one KSB; a qualitative as opposed to quantitative approach is suggested.
Evidence sources may include:
Workplace documentation and records, for example:
This is not a definitive list; other evidence sources can be included.
The portfolio of evidence should not include reflective accounts or any methods of self-assessment. Any employer contributions should focus on direct observation of performance (for example, witness statements) rather than opinions. The evidence provided should be valid and attributable to the apprentice; the portfolio of evidence should contain a statement from the employer and apprentice confirming this.
The EPAO should not assess the portfolio of evidence directly as it underpins the discussion . The independent assessor should review the portfolio of evidence to prepare questions for the discussion . They are not required to provide feedback after reviewing the portfolio..
Once the apprentice has submitted the professional discussion portfolio, the EPAO will review the portfolio within 2 weeks. The EPAO will communicate with the apprentice and employer to decide on a date for the professional discussion. Typically any time within the 5 month EPA period.
Project report, presentation and questions: The employer and the apprentice must confirm that the apprentice has completed the work themselves.
Apprentices must compile a project during the on-programme period of the apprenticeship, specifically within the last 6 months prior to gateway. It should contain evidence related to the KSBs that will be assessed by this assessment method. The portfolio of evidence will typically contain evidence of 1-2 projects. Evidence should be mapped against the KSBs. The apprentice should also provide a maximum 300-word context summary outlining the project(s).
Evidence may be used to demonstrate more than one KSB; a qualitative as opposed to quantitative approach is suggested. Evidence sources may include:
Workplace documentation /records, for example:
This is not a definitive list, other evidence sources can be included.
The portfolio should not include reflective accounts or any methods of self-assessment. Any employer contributions should focus on direct observation of performance (for example witness statements) rather than opinions. The evidence provided should be valid and attributable to the apprentice; the portfolio of evidence should contain a statement from the employer and apprentice confirming this.
The EPAO should not assess the portfolio of evidence directly as it underpins the question stage of the presentation. The independent assessor should review the portfolio of evidence to prepare questions. They are not required to provide feedback after reviewing the portfolio.
The project may be based on any of the following:
The project may also be based on:
Once the apprentice has submitted the project(s) portfolio, the EPAO will review the portfolio within 2 weeks to enable a decision on a suitable project report scope and title. The EPAO will communicate the scope and title to the apprentice within 1 week of the review. The employer and apprentice are not involved in the decision on the project report, scope and title.
The EPA period starts when the EPAO confirms all gateway requirements have been met. The EPAO must complete this within 15 working days.
The apprentice must submit any policies and procedures as requested by the EPAO.
Assessment methods 1 and 2 can be delivered in any order or concurrently. However, the assessment components in assessment method 2 cannot be delivered in any order. The project report must be completed and written prior to the presentation and questions.
The rationale for this is that the presentation must be based on the content of the project report. The presentation will enable the apprentice to present their findings within the report and also give the assessor the opportunity to assess any of the KSBs which have not been captured within the report. The presentation will also give the assessor the opportunity to verify that the report is the work of the apprentice.
In the discussion, an independent assessor and apprentice have a formal two-way conversation.
The apprentice can refer to and illustrate their answers with evidence from their portfolio of evidence. It gives the apprentice the opportunity to demonstrate their competency across the KSBs mapped to this EPA method.
This assessment method is being used because:
The professional discussion must be structured to give the apprentice the opportunity to demonstrate the KSBs mapped to this assessment method to the highest available grade.
The independent assessor conducts and assesses the professional discussion.
The purpose of the independent assessor's questions will be to assess the apprentice on the following themes:
The EPAO must give an apprentice at least 3 weeks notice of the professional discussion.
The independent assessor must have at least 2 week(s) to review the supporting documentation.
The apprentice must have access to their portfolio of evidence during the professional discussion.
The apprentice can refer to and illustrate their answers with evidence from their portfolio of evidence, however the portfolio of evidence is not directly assessed.
The professional discussion must last for 90 minutes. The independent assessor can increase the time of the professional discussion by up to 10%. This time is to allow the apprentice to answer the final question completely.
For the professional discussion, the independent assessor must ask at least 10 questions. Follow-up questions are allowed. The independent assessor must use the questions from the EPAO’s question bank or create their own questions in-line with the EPAO’s training. The professional discussion must allow the apprentice the opportunity to demonstrate the KSBs mapped to this assessment method at the highest possible grade.
The independent assessor must keep accurate records of the assessment. The records must include the KSBs met, the grade achieved and answers to questions.
The independent assessor will make all grading decisions.
The professional discussion must take place in a suitable venue selected by the EPAO (for example the EPAO’s or employer’s premises).
The professional discussion can be conducted by video conferencing. The EPAO must have processes in place to verify the identity of the apprentice and ensure the apprentice is not being aided.
The professional discussion should take place in a quiet room, free from distractions and influence.
The EPAO must write an assessment specification and question bank. The specification must be relevant to the occupation and demonstrate how to assess the KSBs shown in the mapping. It is recommended this is done in consultation with employers of this occupation. The EPAO should maintain the security and confidentiality of EPA materials when consulting employers. The questions must be unpredictable. A question bank of sufficient size will support this. The assessment specification and questions must be reviewed at least once a year to ensure they remain fit-for-purpose.
The EPAO must develop purpose-built question banks and ensure that appropriate quality assurance procedures are in place, for example, considering standardisation, training and moderation. The EPAO must ensure that questions are refined and developed to a high standard.
The EPAO must ensure that the apprentice has a different set of questions in the case of re-sits or re-takes.
The EPAO must produce the following materials to support the professional discussion:
The report involves the apprentice completing a written report based on a significant and defined project that has a real business application and benefit. The project must be completed on-programme in the last 6 months prior to gateway, and is not assessed. The report must then be written during the EPA period and will be assessed.
The project report, presentation and questions must be structured to give the apprentice the opportunity to demonstrate the KSBs mapped to this assessment method to the highest available grade. The EPAO must refer to the grading descriptors to ensure that the report is pitched appropriately
This assessment method includes 2 components:
The project report and any components must be assessed holistically by the independent assessor when they are deciding the grade for this assessment method.
This assessment method is being used because:
The project report, presentation and questions must be structured to give the apprentice the opportunity to demonstrate the KSBs mapped to this assessment method to the highest available grade.
The apprentice must complete a project in the last 6 months of the apprenticeship before entering gateway. The project may be based on any of the following:
This piece of work may also be based on:
The project report must be completed during the EPA period and will be based on the project completed pre-gateway. The project will not be assessed, however the project report will be assessed.
To ensure the report allows the apprentice to meet the KSBs mapped to this assessment method to the highest available grade, the EPAO should decide the project report title and scope at gateway to ensure it is suitable.
The apprentice can only start the project report after the gateway. They must complete and submit the report to the EPAO within 8 weeks of receiving confirmation of the report title from the EPAO. The employer should ensure the apprentice has the time and resources within this period, to plan and complete their project report. The project report and content should be completed unaided.
The apprentice may work as part of a team which could include technical internal or external support. However, the project report must be the apprentice’s own work and will be reflective of their own role and contribution. The apprentice and their employer must confirm that the project report is the apprentice’s own work when it is submitted.
The report must include at least:
In order to ensure the report is robust and sufficiently covers the KSBs, the report should include, at least:
The project report has a maximum word count of 3500 words. A tolerance of 10% above the word count is allowed at the apprentice’s discretion. Appendices, references and diagrams are not included in this total. An appendix must be included showing how the project report maps to the KSBs that are being assessed by this method.
Should an apprentice fail component 1, the apprentice will need to re-take component 1 before progressing to component 2.
In the presentation with questions the apprentice delivers a presentation to an independent assessor based on the report and critically evaluates their outcomes and results. The independent assessor must ask questions following the presentation. This gives the apprentice the opportunity to demonstrate the KSBs mapped to this assessment method.
The purpose of the questions is:.
The presentation will provide an overview and salient points of the apprentice’s report with the opportunity for questions and answers presentation with questions and answers. The independent assessor must ask questions after the presentation. All presentations must include at least:
The apprentice must prepare and submit their presentation to the EPAO at the same time as the apprentice submits the project report.
The apprentice must notify the EPAO, at the submission of the presentation, of any technical requirements for the presentation. For the presentation, the apprentice will have access to:
The independent assessor must have at least 2 weeks to mark the report to allow the independent assessor to prepare questions.
The EPAO must give the apprentices at least 1 week(s) notice of the date and time of the presentation with questions.
The apprentice must deliver their presentation to the independent assessor on a one-to-one basis
The independent assessor must ask questions after the presentation.
The presentation and questions must last 60 minutes. This will typically include a presentation of 20 minutes and questioning lasting 40 minutes. The independent assessor can increase the total time of the presentation and questioning by up to 10%. This time is to allow the apprentice to complete their last point or respond to a question if necessary.
The independent assessor must ask at least 8 questions. They must use the questions from the EPAO’s question bank or create their own questions in-line with the EPAO’s training. Follow up questions are allowed where clarification is required.
The independent assessor must use the full time available for questioning. There is equal weighting between the presentation and questioning components.
The presentation with questions must take place in a suitable venue selected by the EPAO (for example the EPAO’s or employer’s premises).
The presentation with questions should take place in a quiet room, free from distractions and influence.
The presentation with questioning can be conducted by video conferencing. The EPAO must have processes in place to verify the identity of the apprentice and ensure the apprentice is not being aided.
The EPAO must write an assessment specification and question bank. The specification must be relevant to the occupation and demonstrate how to assess the KSBs mapped to this assessment method. It is recommended this is done in consultation with employers of this occupation. EPAOs should maintain the security and confidentiality of EPA materials when consulting employers. The questions must be unpredictable. A question bank of sufficient size will support this. The assessment specification and questions must be reviewed at least once a year by the EPAO to ensure they remain fit-for-purpose.
The EPAO must develop purpose-built question banks and ensure that appropriate quality assurance procedures are in place, for example, considering standardisation, training and moderation. EPAOs must ensure that questions are refined and developed to a high standard.
The EPAO must ensure that apprentice has a different set of questions in the case of re-sits or re-takes.
EPAO must produce the following materials to support the project report, presentation and questions:
Fail - does not meet pass criteria
|
Theme
KSBs
|
Pass
Apprentices must demonstrate all the pass descriptors
|
Distinction
Apprentices must demonstrate all the pass descriptors and all of the distinction descriptors
|
|---|---|---|
|
Risk and regulation frameworks
K1 K2 K3 K5 K7 S3 S8 |
Articulates the role of the industry regulators, their inter-relationships and objectives and the impact on the apprentice's organisation. K2, K3 Critically analyses how the features and principles of the industry legal and regulatory framework have evolved over time, leading to the current role of their organisation plays in the wellbeing of society K1, K5 Analyses the extent to which professional standards and methods of working are applied within the organisation. Co-ordinates and manages work and documentation to meet legal, regulatory and company deadlines in line with industry professional standards and best practice’. K7, S3, S8
|
Critically analyses the degree to which the organisation’s documentation aligns to professional standards and best practice. K7, S3, S8
|
|
Products and customers
K9 K10 K11 S4 S12 B4 |
Analyses customer segmentation and needs to determine whether it meets legal, regulatory, process and/or organisational policy requirements. K9, S4 Articulates the risks to clients of the organisation’s products and services and applies policies and processes to ensure fair customer outcomes, manages conflict to produce win:win outcomes in line with the ethical code of conduct for the sector/organisation. K10, K11, S12, B4 |
Critically analyses the degree to which organisational, legal and regulatory policies and processes ensure fair customer outcomes. K10, S4
|
|
IT and digital /systems and processes
K16 K18 S19 |
Applies data protection legislation and organisational policy to handle data safely and securely when sharing and storing information mitigating the risks from cybercrime K16, K18, S19
|
Analyses the risk to the organisation's data from cybercrime K18, S19
|
|
Audits
K4 K17 |
Articulates internal and external audit requirements and the responsibilities of all parties to the audit. Outlines the implications to the organisation of audit findings of non-compliance K4, K17
|
N/A
|
|
Green finance and sustainability
K19 K20 |
Evaluates the manageability of environment and sustainability risks relative to compliance and risk. Outlines the role key stakeholders play in sustainable finance and how it is incorporated into risk/compliance frameworks. K19, K20
|
N/A
|
|
Strategy and planning
K14 S1 S15 B6 |
Applies the principles of strategic planning to solve problems faced by customers which lead to changes and/or overcome challenges, in line with organisational policies and procedures K14, S1, S15, B6
|
Critiques actions taken to solve customer problems and justifies changes to organisational policies and procedures K14, S1, B6
|
Fail - does not meet pass criteria
|
Theme
KSBs
|
Pass
Apprentices must demonstrate all the pass descriptors
|
Distinction
Apprentices must demonstrate all the pass descriptors and all of the distinction descriptors
|
|---|---|---|
|
Industry and company understanding / analysis and problem solving
K6 S5 |
Analyses competitor activity and political, social and environmental factors which change organisational risk appetite to reach conclusions and make recommendations as to how they might be mitigated K6, S5
|
N/A
|
|
Communicating and influencing
K13 S2 S6 S7 S9 S13 S17 B3 B7 |
Applies communication skills adapting to the audience and outputs required, collaborates with others and promotes teamwork in line with the organisational policies on working with others, equality and inclusivity K13 S6, S7, B7 Justifies the use of digital tools for project research, analysis and data presentation and to build reports specific to the audience S2, S17 Evaluates how their leadership in the project challenges and influences managers and colleagues on a course of action in order to achieve outcomes S9, S13, B3 |
Justifies their selection and application of communication styles and why others were not suitable K13, S6
Evaluates the use of digital tools to build reports and the extent to which they meet audience requirements S2, S17
|
|
Stakeholder management
K8 K12 S10 S11 B1 B5 |
Outlines the purpose of their team or departments and any other teams or organisations the project aligns with which enables building and maintaining of stakeholder relationships and expectations K8, K12 S10
Justifies the methods used in the project to build trust and achieve results with co-workers based on their own decisions, in line with the organisational policies and guidelines on honesty, integrity and confidentiality S11, B1, B5
|
Evaluates the approach they took in building trust with colleagues and how this influenced achieving the desired course of action K12, S8, S10
|
|
Continuous improvement
K15 S14 S16 S18 B2 |
Articulates the principles of continuous improvement and how they apply continued learning to deliver improved outcomes. Uses external network opportunities to take ownership of their own development needs to maintain own knowledge and assist colleagues’ development of K15, S14, S16, S18, B2
|
N/A
|
The assessment methods contribute equally to the overall EPA pass grade.
Performance in the EPA will determine the apprenticeship grade of:
Independent assessors must individually grade the: professional discussion, project report and presentation and questions according to the requirements set out in this EPA plan.
EPAOs must combine the individual assessment method grades to determine the overall EPA grade.
An apprentice who fails one or more assessment method will be awarded an overall EPA fail.
An apprentice must achieve at least a pass in all the assessment methods to get an overall pass. To achieve an overall EPA 'pass', the apprentice must achieve a pass in both assessment methods.To achieve an overall EPA ‘merit,’ the apprentice must achieve a pass in one of the assessment methods and a distinction in the other. To achieve an overall EPA ‘distinction’, apprentices must achieve a distinction in both assessment methods
Grades from individual assessment methods should be combined in the following way to determine the grade of the EPA overall.
| Professional discussion | Project report, presentation and questions | Overall Grading |
|---|---|---|
| Fail | Fail | Fail |
| Any grade | Fail | Fail |
| Fail | Any grade | Fail |
| Pass | Pass | Pass |
| Pass | Distinction | Merit |
| Distinction | Pass | Merit |
| Distinction | Distinction | Distinction |
An apprentice who fails one or more assessment method(s) can take a re-sit or a re-take at their employer’s discretion. The apprentice’s employer needs to agree that a re-sit or re-take is appropriate. A re-sit does not need further learning, whereas a re-take does.
An apprentice should have a supportive action plan to prepare for a re-sit or a re-take.
The employer and EPAO agree the timescale for a re-sit or re-take. A re-sit is typically taken within 3 months of the EPA outcome notification. The timescale for a re-take is dependent on how much re-training is required and is typically taken within 4 months of the EPA outcome notification.
Failed assessment methods must be re-sat or re-taken within a 6-month period from the EPA outcome notification, otherwise the entire EPA will need to be re-sat or re-taken in full.
Re-sits and re-takes are not offered to an apprentice wishing to move from pass to a higher grade.
An apprentice will get a maximum EPA grade of pass for a re-sit or re-take, unless the EPAO determines there are exceptional circumstances.
| Roles | Responsibilities |
|---|---|
|
Apprentice |
As a minimum, the apprentice should:
|
|
Employer |
As a minimum, the apprentice's employer must:
Post-gateway, the employer must:
|
|
EPAO |
As a minimum, the EPAO must:
|
|
Independent assessor |
As a minimum, an independent assessor must:
|
|
Training provider |
As a minimum, the training provider must:
|
The EPAO must have reasonable adjustments arrangements for the EPA.
This should include:
Adjustments must maintain the validity, reliability and integrity of the EPA as outlined in this EPA plan.
Internal quality assurance refers to how the EPAO ensures valid, consistent and reliable EPA decisions. The EPAO must adhere to the requirements within the roles and responsibilities section and:
Affordability of the EPA will be aided by using at least some of the following:
This apprenticeship aligns with The Chartered Institute for Securities and Investment (CISI) qualification. Successful completion of this qualification will give access to full membership of the Institute and MCSI designatory letters.
This apprenticeship aligns with The Institute of Risk Management qualifications. Successful completion of a qualification would give recognition as a Certificate Member (IRMCert) when completing the Certificate qualifications and Graduate Member (GradIRM) when completing the Diploma.
This apprenticeship aligns with The Chartered Banking Institute qualification. An apprentice successfully completing the qualification would be eligible for recognition as a Certified Member (CCBI) and would be able to use the professional designation 'CRP' (Climate Risk Professional).
The apprenticeship aligns with The International Compliance Association qualifications. Successful completion of a qualification will give access to full professional membership of the ICA and permit the use of the MICA designatory letters.
This apprenticeship aligns with The Chartered Institute of Credit Management qualification. An apprentice successfully completing this qualification would be eligible for Graduate Membership MCICM(Grad).
| Knowledge | Assessment methods |
|---|---|
|
K1
The features and principles of the legal and regulatory framework in their industry. Back to Grading |
Professional discussion |
|
K2
The role of regulators in their industry, their objectives and primary functions. Back to Grading |
Professional discussion |
|
K3
The inter-relationships between different regulators and their organisation. Back to Grading |
Professional discussion |
|
K4
The implications of non-compliance on the organisation. Back to Grading |
Professional discussion |
|
K5
The history of the industry and the role their organisation plays in the wellbeing of society. Back to Grading |
Professional discussion |
|
K6
Factors that can change risk appetite in an organisation including competitor activity, political, social and environmental factors and how these can be mitigated. Back to Grading |
Project report, presentation and questions |
|
K7
Professional standards and best practice and how these are applied. Back to Grading |
Professional discussion |
|
K8
The role of their team or department, the different teams and organisations they work with and how they support them. Back to Grading |
Project report, presentation and questions |
|
K9
Approaches to identify customer segments and needs. Back to Grading |
Professional discussion |
|
K10
The policies and processes in place to ensure fair customer outcomes. Back to Grading |
Professional discussion |
|
K11
Financial and compliance risks within the organisation’s products and services available to customers. Back to Grading |
Professional discussion |
|
K12
The principles of excellent stakeholder management relative to their role. Back to Grading |
Project report, presentation and questions |
|
K13
The principles of communication techniques such as, active listening, team communications, business storytelling, negotiation techniques, conflict management and, diversity, equality and inclusivity considerations. Back to Grading |
Project report, presentation and questions |
|
K14
The features and principles of strategic planning relative to their role. Back to Grading |
Professional discussion |
|
K15
Continuous improvement principles and techniques relative to their role. Back to Grading |
Project report, presentation and questions |
|
K16
The systems, tools and processes required in the role such as the impact of technology on risk management, cyber security, AI, blockchain, digital tools. Back to Grading |
Professional discussion |
|
K17
Internal and external audit requirements and the responsibilities of the auditor and auditee. Back to Grading |
Professional discussion |
|
K18
The impact of data protection legislation and the processes for sharing and storing information safely and securely including risks to data from cybercrime. Back to Grading |
Professional discussion |
|
K19
The nature and importance of key climate, environmental and emerging sustainability risks, relative to compliance and risk, and how these may be managed. Back to Grading |
Professional discussion |
|
K20
The extent to which sustainable finance is incorporated in risk and compliance frameworks and the role of key stakeholders. Back to Grading |
Professional discussion |
| Skill | Assessment methods |
|---|---|
|
S1
Think laterally, take a wide perspective of the issue at hand, consider aspects of a problem to formulate an operational or strategic plan. Back to Grading |
Professional discussion |
|
S2
Build reports to suit the requirement of the audience, for example departmental plans, key performance indicators (KPIs) and project reports. Back to Grading |
Project report, presentation and questions |
|
S3
Plan and organise own work to meet legal, regulatory, organisational deadlines. Back to Grading |
Professional discussion |
|
S4
Analyse and interpret information to assess whether it meets legal, regulatory, process or policy requirements. Back to Grading |
Professional discussion |
|
S5
Analyse information to identify key issues, draw conclusions and make recommendations. Back to Grading |
Project report, presentation and questions |
|
S6
Demonstrate different communication methods and adapt communication style to their audience, being clear on purpose of communication and outputs required, for example; verbal, written, virtual communication, presentations. Back to Grading |
Project report, presentation and questions |
|
S7
Demonstrate different communication styles such as, active listening, team communications, business storytelling, negotiation techniques, conflict management, cross-cultural communications, equality and inclusivity considerations. Back to Grading |
Project report, presentation and questions |
|
S8
Maintain documents in line with current regulation and policy. Back to Grading |
Professional discussion |
|
S9
Challenge and influence managers and colleagues on desired course of action Back to Grading |
Project report, presentation and questions |
|
S10
Build and maintain working relationships with stakeholders, contracting and managing stakeholder expectations. Back to Grading |
Project report, presentation and questions |
|
S11
Build trust with colleagues, collaborating to achieve results. Back to Grading |
Project report, presentation and questions |
|
S12
Manage conflict, demonstrating empathy and a desire to work towards win-win outcomes. Back to Grading |
Professional discussion |
|
S13
Lead others to achieve desired outcomes. Back to Grading |
Project report, presentation and questions |
|
S14
Apply continuous improvement techniques to deliver improved compliance and risk outcomes for the organisation, for example seek feedback and respond to improve performance. Back to Grading |
Project report, presentation and questions |
|
S15
Develop strategies to implement change. Back to Grading |
Professional discussion |
|
S16
Network with others in the profession to keep up to date with changes in the industry, best practice and potential opportunities. Back to Grading |
Project report, presentation and questions |
|
S17
Use digital tools for research, analysis, and to present data using visualisation techniques. Back to Grading |
Project report, presentation and questions |
|
S18
Demonstrate technology to others and keeps up to date with developments in IT relative to their role. Back to Grading |
Project report, presentation and questions |
|
S19
Handle data safely and securely and share information in compliance with data protection legislation and organisation’s policy. Back to Grading |
Professional discussion |
| Behaviour | Assessment methods |
|---|---|
|
B1
Displays honesty and integrity - truthful in their actions. Shows integrity by doing the right thing, maintains confidentiality and acts with due care and diligence. Back to Grading |
Project report, presentation and questions |
|
B2
Takes ownership of continued professional development, acts as a role model and supports others in their development. Back to Grading |
Project report, presentation and questions |
|
B3
Takes an adaptable, evidence-based approach to decision making in the context of specific situations or environments. Back to Grading |
Project report, presentation and questions |
|
B4
Resilient in challenging, changing environments. Shows emotional intelligence to resolve conflicts when they arise. Back to Grading |
Professional discussion |
|
B5
Takes responsibility for decisions and procedures implemented. Back to Grading |
Project report, presentation and questions |
|
B6
Displays a growth mindset, learning from failures, spotting opportunities and overcoming challenges. Back to Grading |
Professional discussion |
|
B7
Collaborates and promotes teamwork across diverse teams; internal, external and across disciplines. Back to Grading |
Project report, presentation and questions |
| KSBS GROUPED BY THEME | Knowledge | Skills | Behaviour |
|---|---|---|---|
|
Risk and regulation frameworks
K1 K2 K3 K5 K7 S3 S8 |
The features and principles of the legal and regulatory framework in their industry. (K1) The role of regulators in their industry, their objectives and primary functions. (K2) The inter-relationships between different regulators and their organisation. (K3) The history of the industry and the role their organisation plays in the wellbeing of society. (K5) Professional standards and best practice and how these are applied. (K7) |
Plan and organise own work to meet legal, regulatory, organisational deadlines. (S3) Maintain documents in line with current regulation and policy. (S8) |
N/A |
|
Products and customers
K9 K10 K11 S4 S12 B4 |
Approaches to identify customer segments and needs. (K9) The policies and processes in place to ensure fair customer outcomes. (K10) Financial and compliance risks within the organisation’s products and services available to customers. (K11) |
Analyse and interpret information to assess whether it meets legal, regulatory, process or policy requirements. (S4) Manage conflict, demonstrating empathy and a desire to work towards win-win outcomes. (S12) |
Resilient in challenging, changing environments. Shows emotional intelligence to resolve conflicts when they arise. (B4) |
|
IT and digital /systems and processes
K16 K18 S19 |
The systems, tools and processes required in the role such as the impact of technology on risk management, cyber security, AI, blockchain, digital tools. (K16) The impact of data protection legislation and the processes for sharing and storing information safely and securely including risks to data from cybercrime. (K18) |
Handle data safely and securely and share information in compliance with data protection legislation and organisation’s policy. (S19) |
N/A |
|
Audits
K4 K17 |
The implications of non-compliance on the organisation. (K4) Internal and external audit requirements and the responsibilities of the auditor and auditee. (K17) |
N/A |
N/A |
|
Green finance and sustainability
K19 K20 |
The nature and importance of key climate, environmental and emerging sustainability risks, relative to compliance and risk, and how these may be managed. (K19) The extent to which sustainable finance is incorporated in risk and compliance frameworks and the role of key stakeholders. (K20) |
N/A |
N/A |
|
Strategy and planning
K14 S1 S15 B6 |
The features and principles of strategic planning relative to their role. (K14) |
Think laterally, take a wide perspective of the issue at hand, consider aspects of a problem to formulate an operational or strategic plan. (S1) Develop strategies to implement change. (S15) |
Displays a growth mindset, learning from failures, spotting opportunities and overcoming challenges. (B6) |
| KSBS GROUPED BY THEME | Knowledge | Skills | Behaviour |
|---|---|---|---|
|
Industry and company understanding / analysis and problem solving
K6 S5 |
Factors that can change risk appetite in an organisation including competitor activity, political, social and environmental factors and how these can be mitigated. (K6) |
Analyse information to identify key issues, draw conclusions and make recommendations. (S5) |
N/A |
|
Communicating and influencing
K13 S2 S6 S7 S9 S13 S17 B3 B7 |
The principles of communication techniques such as, active listening, team communications, business storytelling, negotiation techniques, conflict management and, diversity, equality and inclusivity considerations. (K13) |
Build reports to suit the requirement of the audience, for example departmental plans, key performance indicators (KPIs) and project reports. (S2) Demonstrate different communication methods and adapt communication style to their audience, being clear on purpose of communication and outputs required, for example; verbal, written, virtual communication, presentations. (S6) Demonstrate different communication styles such as, active listening, team communications, business storytelling, negotiation techniques, conflict management, cross-cultural communications, equality and inclusivity considerations. (S7) Challenge and influence managers and colleagues on desired course of action (S9) Lead others to achieve desired outcomes. (S13) Use digital tools for research, analysis, and to present data using visualisation techniques. (S17) |
Takes an adaptable, evidence-based approach to decision making in the context of specific situations or environments. (B3) Collaborates and promotes teamwork across diverse teams; internal, external and across disciplines. (B7) |
|
Stakeholder management
K8 K12 S10 S11 B1 B5 |
The role of their team or department, the different teams and organisations they work with and how they support them. (K8) The principles of excellent stakeholder management relative to their role. (K12) |
Build and maintain working relationships with stakeholders, contracting and managing stakeholder expectations. (S10) Build trust with colleagues, collaborating to achieve results. (S11) |
Displays honesty and integrity - truthful in their actions. Shows integrity by doing the right thing, maintains confidentiality and acts with due care and diligence. (B1) Takes responsibility for decisions and procedures implemented. (B5) |
|
Continuous improvement
K15 S14 S16 S18 B2 |
Continuous improvement principles and techniques relative to their role. (K15) |
Apply continuous improvement techniques to deliver improved compliance and risk outcomes for the organisation, for example seek feedback and respond to improve performance. (S14) Network with others in the profession to keep up to date with changes in the industry, best practice and potential opportunities. (S16) Demonstrate technology to others and keeps up to date with developments in IT relative to their role. (S18) |
Takes ownership of continued professional development, acts as a role model and supports others in their development. (B2) |
Contact us about this apprenticeship