This apprenticeship standard is in the process of being revised. In the meantime, the version below remains approved for delivery. Further details of this and other occupational standards in revision are available in the revisions status report.

Overview of the role

Giving basic advice to financial services organisations on the legal and regulatory rules they must follow - such as those about data security or preventing money laundering.

Compliance and risk officer

Reference Number: ST0362

Details of standard

Role and occupation

Compliance and risk officer

Occupational profile:

All financial services organisations have to meet a wide range of compliance and risk requirements set out in legislation e.g. data security, or required by regulators e.g. financial crime, operational risk. To meet these requirements many organisations will have dedicated Risk and/or compliance departments that are experts in the relevant legislation and regulator requirements. They provide proactive support and guidance to the business areas to ensure that the organisation meets this wide range of requirements, balanced against achieving appropriate customer outcomes. In some organisations, this expertise may be embedded in the business areas themselves.

Typical job titles:

Compliance officer and Risk officer

Role profile

Within the risk and compliance function of a specific organisation, the role of the compliance and risk officer is likely to include providing relatively straightforward support and advice to the business on their specific area(s) of expertise e.g. financial crime, training and competence, fraud; working with the business on specific problems that emerge; analysing data, maintaining records and producing reports; working on review and audits to check that policies are being correctly applied. The role will require sound ethical standards, together with good communication and influencing skills as there can be differences of opinion between the business and the risk and compliance function on the appropriate action to take. Sound underpinning knowledge of risk and compliance frameworks, policies and procedures will be required. The role may cover compliance or risk functions or be a blend of both depending on the organisation.

Entry requirements

Individual employers will set the selection criteria for their apprenticeships. It is recommended that employers may want most candidates to have Level 2 maths and English. Other relevant or prior experience may also be considered as an alternative.

Requirements: Core knowledge, skills and behaviours


Risk and compliance framework: 

  • Broad understanding of the financial services legal and regulatory framework, the role of the different regulators (if appropriate), the implications of non-compliance for the organisation.

Risk and compliance policies and procedures: 

  • sound understanding of the specific risk and compliance requirements for their role e.g. operational risk, financial crime, know your customer, training and competence, approved persons, conduct risk, complaints, data security. This should include both the actual legal and regulatory requirements eg financial conduct authority (FCA) handbook and the policies and procedures used by the organisation to implement these requirements.

Industry and company understanding:

  • Understands the role their organisation plays in financial services, the business they work in, the products and services offered to customers, the organisation’s approach to delivering fair customer outcomes, its ‘Values’, professional standards, and where their role fits in the business. Understands the function of the different areas of the organisation they need to work within their role. Basic understanding of the impact the external environment has on financial services and relevant best practice.

Systems and processes:

  • Understands the systems, tools and processes used in the role, together with the standards to be met, including IT tools.


Delivering services:

  • Uses a wide range of company systems and processes to deliver services to customers and colleagues. This may include advice to customers and colleagues based on regulatory requirements and organisation policies; working with suppliers on data security; internal reviews and audits and follow up; ensuring accurate records e.g. approved persons; supporting formal committees.
  • Proactively meets challenging individual and team performance measures in line with company policy, Values, standards and regulatory requirements.
  • Plans and organises their work, focusing on priorities, to meet commitments and KPIs, including regulator deadlines. Escalates when required.

Analysis and problem solving:

  • Analyses relatively straightforward risk and compliance problems, investigating issues e.g. fraudulent transactions, and recommending solutions. Works with data, analysing and producing required reports and management information for internal and/or external e.g. FCA use. Able to read and interpret reports, summarising required information.

Communicating and influencing:

  • Writes clear and concise reports and recommendations in a way that is meaningful to the recipient.
  • Deals effectively with customers and colleagues, using sound interpersonal skills and communicating well through a range of media using appropriate language e.g. phone, face to face, email. Listens actively to understand needs and adapts their style to the recipient. Influences others to ensure compliance and risk requirements are met, when appropriate.


  • Builds and maintains strong working relationships with customers, colleagues, suppliers as appropriate.  
  • Consistently supports colleagues at all levels and collaborates to achieve results. Aware of their own role in the team and impact on others.

Continuous improvement:

  • Identifies opportunities to improve performance and service delivered. Takes ownership of specific changes that impact their role

Personal development:

  • Keeps up to date with relevant legal and regulatory changes. Seeks feedback and acts on it to improve their performance.
  • Builds their own capability through ownership of their own development, working with their manager.


Honesty and integrity:

  • Truthful, sincere and trustworthy in their actions.
  • Shows integrity by doing the right thing.
  • Maintains appropriate confidentiality at all times.


  • Adapts positively to changing work priorities and patterns when new tasks need to be done or requirements change.


  • Displays energy and enthusiasm in the way they go about their role, dealing positively with setbacks when they occur.
  • Stays positive under pressure.


The length of this apprenticeship is expected to be typically 15 to 18 months.

Link to professional registration and progression

This standard allows the apprentice to apply for professional membership of the appropriate professional body, depending on which qualification is taken.

On completion of this apprenticeship, the apprentice will be fully competent in the role and can continue to develop their career within the organisation through a range of possible pathways, either remaining in the compliance and risk area or other areas of the business.


This is a Level 3 apprenticeship.


The apprentice will complete one appropriate qualification (as considered most relevant by the employer) from one of the following professional bodies:

International Compliance Association

Cert in Anti Money Laundering; Cert in Compliance; Cert in Financial Crime Prevention; Specialist Cert in Money Laundering Risk; Specialist Cert in Trade Based money laundering; Specialist Cert in Corporate Governance; Specialist Cert in Managing Sanctions Risk; Specialist Certificate in Conduct Risk; International Advanced Certificate in Anti Money Laundering; International Advanced Certificate in Practical Customer Due Diligence ; International Advanced Certificate in Managing Fraud; International Advanced Certificate in Managing Sanctions Risk

*From 1/3/2023, the International Advanced Certificate in Regulatory Compliance will be replaced with the Advanced Certificate in Governance, Risk and Compliance. All new apprentice from 1/3/2023, should take the Advanced Certificate in Governance, Risk and Compliance. Any existing apprentices part-way through their studies on the International Advanced Certificate in Regulatory Compliance can continue their studies and complete this certificate.  

Chartered Institute of Securities and Investment

Combating financial crime; Global financial compliance; Risk in financial services; Managing cyber security

The London Institute of Banking and Finance

UK financial regulation; Financial services, regulation and ethics; Certificate in business Banking and Conduct*; ( The LIBF qualifications “Award in customer complaints handling” and “Cert in Regulated Complaints Handling” are withdrawn – existing apprentices must have taken their exams by 1.5.2019).  Certificate in retail and digital banking (CertRDB). (This qualification replaces the LIBF Certificate in Retail Banking and Conduct (CertRBCB). All new apprentices should take CertRDB. Any existing apprentices part way through their studies may complete CertRBCB.

*From 09.08.21, the Certificate in Business Banking and Conduct (CertBB&C) will be replaced with the Level 3 Certificate in Business Banking (CertBB). All new apprentices should take the Level 3 Certificate in Business Banking (CertBB). Any existing apprentices partway through their studies may complete the Level 3 Certificate in Business Banking and Conduct (CertBB&C) and will have the opportunity to complete their qualification within their 12 month registration window.

Chartered Banker Institute

Cert in Complaint Handling

Chartered Insurance Institute

Certificate in Financial Services, Certificate in Insurance

Chartered Institute of Credit Management

Diploma in Credit Management; CSA Diploma, Working in Debt Collection

Institute of Risk Management

International Certificate in Risk Management

Review date

After 3 years or when significant change is required.

Crown copyright © 2024. You may re-use this information (not including logos) free of charge in any format or medium, under the terms of the Open Government Licence. Visit

Status: Approved for delivery
Level: 3
Reference: ST0362
Version: 1.1
Date updated: 21/03/2023
Approved for delivery: 19 September 2016
Route: Legal, finance and accounting
Typical duration to gateway : 15 months (this does not include EPA period)
Maximum funding: £9000
LARS Code: 143
EQA Provider: Ofqual
Employers involved in creating the standard: Lloyds Bank, HSBC, Barclays, Santander, TSB, Skipton Building Society, Canada Life, Geoban, Sense, Aon Hewitt, Leeds Building Society, Nationwide, Cabot Financial, Lowell Group

Version log

Version Change detail Earliest start date Latest start date Latest end date
1.1 End-point assessment plan and standard revised 21/03/2023 Not set Not set
1.0 Approved for delivery 19/09/2016 20/03/2023 Not set

Is this webpage useful?

Thank you for your feedback

Tell us about your experience