Financial crime controls in a system-wide risk environment

June 19, 2026

Financial crime is no longer confined to individual firms. As fraud, money laundering, sanctions evasion and cyber threats become increasingly interconnected, regulators expect firms to demonstrate that controls deliver real-world outcomes. This requires a shift towards intelligence-led, system-wide risk management and the ability to adapt quickly as threats evolve. 

The FCA is raising expectations for how firms design and demonstrate the effectiveness of financial crime controls. Recent commentary, including its speech on working together against financial crime, brings more emphasis to firms evidencing that their frameworks deliver tangible risk reduction in practice – not simply that they exist. 

At the heart of this shift is a more fundamental redefinition of financial crime risk. It is no longer something that can be fully understood, assessed or mitigated within the boundaries of a single organisation. Instead, it is increasingly shaped by how risks move across firms, sectors and jurisdictions – and by how effectively those connections are recognised and acted on. 

A more interconnected threat landscape

Financial crime has become more organised, technologically enabled and cross-border in nature. Fraud, money laundering, sanctions evasion and cyber-enabled crime are rarely isolated events; they are often linked within the same chain of activity. 

In practice, this creates significant complexity for firms. Activity rarely presents in discrete categories. A fraud case may quickly expose weaknesses in AML controls; a cyber incident may reveal gaps in due diligence or transaction monitoring. While each issue may appear manageable in isolation, they often point to a broader and more complex pattern of risk when viewed together.  

However, many financial crime frameworks remain structured around separate risk types, supported by siloed systems, processes and governance. In a more dynamic environment, this separation creates blind spots where risks fall between functions and no single view of exposure exists.  

Why firm-level controls are no longer sufficient

The FCA’s direction suggests that firm-level controls, while necessary, are no longer sufficient on their own. There is increasing emphasis on collaboration, information sharing and the effective use of external intelligence to understand risk more holistically. 

For many firms, the challenge lies not in access to intelligence, but in how it is operationalised. Industry forums, alerts and information-sharing mechanisms are often established, but they are not always embedded into day-to-day decision-making. The regulatory expectation is shifting towards a model where external insight actively shapes monitoring, escalation and risk prioritisation in real time 

This requires faster feedback loops, clearer ownership of risk intelligence, and stronger integration between first- and second-line controls. 

Prioritisation as a regulatory expectation

Alongside collaboration, prioritisation is becoming a defining feature of effective financial crime management. 

Firms are no longer expected to treat all risks equally. Instead, they must demonstrate how they identify the most material risks, how those risks evolve, and how resources are directed accordingly. This reflects both the scale of the challenge and the regulator’s focus on outcomes rather than coverage alone.  

For many organisations, this exposes limitations in traditional risk assessment approaches. Periodic, category-based assessments can quickly become outdated in a fast-moving environment. The result is often a disconnect between documented risk and live exposure. 

A more dynamic model is needed – one that captures how risks intersect, how threats escalate, and where new vulnerabilities are emerging. 

From frameworks to effectiveness

Perhaps the most significant shift is in how financial crime controls are judged. 

The focus is moving beyond whether policies, procedures and systems are in place, towards whether they actually reduce financial crime risk in practice. This brings outcomes into sharper focus and raises the bar for evidence.  

A framework may be technically compliant yet still fall short if it does not reflect how financial crime is occurring today, or if it cannot adapt as risks evolve. This is particularly relevant for legacy AML and financial crime frameworks that have not been materially updated in response to increasingly complex and interconnected threats.  

What this means in practice

Taken together, the FCA’s messaging signals an increase in expectations rather than a wholesale introduction of new requirements.  

Firms should be able to demonstrate that: 

  • Risk assessments reflect evolving threats and their interconnections 
  • Controls remain effective against how financial crime manifests today 
  • External intelligence is actively embedded into decision-making 
  • Staff understand how different financial crime risks interact in practice 
  • Frameworks are reviewed and updated in response to changing risk dynamics  

For many, the challenge is not conceptual, but operational. Delivering this level of responsiveness and oversight requires capacity, specialist expertise and the ability to adapt at pace.  

A system-wide view requires scalable capability

As financial crime continues to be framed through a system-wide lens, firms are under increasing pressure to bridge the gap between expectation and execution. 

This often coincides with growing backlogs, stretched oversight functions, and the need to deliver remediation or uplift programmes under regulatory scrutiny. The result is a demand for flexible, high-quality delivery capability that can be deployed quickly and effectively. 

How Momenta supports financial crime delivery

Momenta supports financial institutions by providing experienced, pre-vetted professionals who can strengthen and deliver financial crime programmes at pace. 

Our model is designed for environments where demands are immediate, complex and subject to regulatory oversight. We help firms: 

  • Stabilise and scale financial crime operations 
  • Deliver remediation and control enhancement programmes 
  • Provide interim leadership across AML and financial crime functions 
  • Deploy trained analysts and specialists to address backlogs and operational pressure 
  • Strengthen frameworks to align with current regulatory expectations 

Whether supporting transformation, remediation or business-as-usual operations, Momenta focuses on enabling firms to demonstrate real-world effectiveness – aligned to the direction set by regulators. 

Get in touch to discuss how Momenta can support your financial crime programme. 

Latest

AML Momenta

Citywire: Platforms tighten AML controls as FCA expectations rise

July 9, 2026
Motor finance Momenta

What the FCA’s partial suspension of the motor finance scheme means for firms

July 3, 2026
Financial crime Momenta

FPS: Fragmented financial crime oversight creates risks

July 1, 2026

Subscribe for updates

Receive regular insights including industry leader interviews, blogs and key trends