How Branch Operations Training Managers Use an LMS to Document AML and BSA Training for Examiners

Why BSA/AML Training Documentation Is the First Thing the Examiner Asks For 

A BSA exam opens with a documentation request. The examiner asks for the written AML compliance program, the BSA officer’s appointment letter, the most recent independent test, the customer due diligence procedures, and the training records. Training is one of the five pillars under 31 CFR 1020.210, and it is the pillar that lives across every employee, every role, and every branch. It is also the pillar with the most documentation surface area, and the one where the training manager carries the load. 

The exam is mandatory under federal law. Section 8(s) of the Federal Deposit Insurance Act (12 USC 1818(s)) and Section 206(q) of the Federal Credit Union Act (12 USC 1786(q)) require a BSA/AML examination during each supervisory cycle. The general cycle is 12 months. Institutions with total assets below $3 billion may qualify for an 18-month cycle under 12 USC 1820(d)(4), provided the institution is well capitalized, well managed, has a satisfactory composite rating, and is not subject to a formal enforcement action. The cadence is not what the training manager controls. What the training manager controls is whether the documentation is ready when the cycle arrives. 

The cost of an unprepared answer shows up in the exam report. Patterns commonly observed in published BSA/AML enforcement actions include missing per-employee training logs, training materials that were not retained, BSA officer training that is inadequate or undocumented, and board of directors training that cannot be evidenced. None of those findings mean the training did not happen. They mean the bank could not prove it. 

The Five Pillars of an AML Program, and Where Training Sits 

31 CFR 1020.210 lists the AML program requirements for banks regulated by a federal functional regulator. The program must include, at a minimum: 

1. A system of internal controls to assure ongoing compliance. 
2. Independent testing for compliance, conducted by bank personnel or an outside party. 
3. Designation of an individual or individuals responsible for coordinating and monitoring day-to-day compliance, commonly referred to as the BSA Compliance Officer. 
4. Training for appropriate personnel. 
5. Appropriate risk-based procedures for conducting ongoing customer due diligence, added by FinCEN’s CDD Rule, which took effect May 11, 2018. 

Most industry guidance and regulatory publications refer to these as the five pillars. Some sources frame the original four program elements separately from the CDD requirement. Both framings describe the same statutory obligations. 

The training pillar is the focus of this article. The FFIEC BSA/AML Examination Manual establishes the supervisory expectation that training should cover BSA regulatory requirements, supervisory guidance, and the bank’s internal BSA/AML policies, procedures, and processes. The manual is the operating reference the examiner will use. 

Three FFIEC manual expectations belong on the training manager’s wall. 

• Tailored to role. Training should be tailored to each individual’s specific responsibilities. Tellers, lenders, operations staff, BSA staff, and senior management do not get the same content. A teller’s training emphasizes Currency Transaction Report thresholds and front-line red flags. BSA staff receive deeper training on Suspicious Activity Report confidentiality under 31 CFR 1020.320(e), which prohibits disclosure of a SAR or information that would reveal its existence except as authorized. 
• Board foundational training. The board of directors and senior management should receive foundational training and be informed of changes and new developments in the BSA. The board does not need teller-level depth, but it does need documented BSA orientation. 
• Periodic refresh. The manual uses periodic rather than annual. The federal regulations cited in the manual — 12 CFR 208.63(c)(4) (Federal Reserve), 12 CFR 326.8(c)(4) (FDIC), 12 CFR 748.2(c)(4) (NCUA), and 12 CFR 21.21(d)(4) (OCC) — all use risk-based language. Most banks adopt an annual policy as practical implementation. That policy then becomes the bank’s documented cadence. 

The FFIEC manual was most recently updated on February 27, 2026, with revisions to the Introduction, Suspicious Activity Reporting, Payable Through Accounts, Electronic Banking, and Nondeposit Investment Products sections. The training section itself was last significantly revised in 2020 and remains the current operating reference. 

What the Examiner Will Ask the Training Manager to Produce 

The training manager’s job during the exam is to produce six categories of documentation. Each one matches a pattern that appears repeatedly in published enforcement actions. 

1. Per-employee BSA training completion records with date, course title, and score. The examiner is checking that every employee in scope received training, not just the BSA staff. 
2. Role-based training paths. Teller, lender, operations, BSA officer, BSA staff, board. The records should show what was assigned to whom and why. 
3. New-hire BSA training records within the bank’s stated timeframe. If the bank’s policy says new hires complete BSA orientation within 30 days, the records should show that. 
4. Board and senior management BSA training records. Foundational training for the board is an explicit FFIEC expectation. The examiner will ask. 
5. Retained training materials and testing materials. Examiners want to verify content, not just attendance. Slides, course outlines, and quiz questions should be retrievable. 
6. Refresh and recurrence documentation. The bank’s stated cadence plus proof that the cadence was met. A policy that says annual is only half the picture. The completion dates for every employee for the last 24 months are the other half. 

The recurring patterns observed in enforcement actions are predictable. No log of when training took place and who attended. Training materials not retained. BSA officer with little or no training. Senior management or board of directors not receiving adequate BSA training. No documented annual BSA training program. None of these findings require new training to fix. They require new documentation to fix. 

The Six LMS Capabilities That Make Exam-Day Documentation Routine 

The right LMS configuration turns the exam documentation request from a two-week scramble into a routine export. Six capabilities show that in action. 

1. Per-employee completion records as the single source of truth. Every completion has a date, a course, a score, and an attempts log. The sign-in sheets and email replies stop being the system of record. 
2. Role-based assignment paths. A teller hire is auto-assigned the teller BSA path. A lender hire is auto-assigned the lender path. The BSA officer, the BSA staff, and the board each have their own group with their own assignments. Role-based reporting matches role-based training. 
3. Date-range export filtered to BSA topics. The examiner asks for the last 12 or 24 months. A filter answers the question in minutes, not days. 
4. Recurrence tracking for the bank’s stated cadence. Most banks set an annual policy. The LMS triggers the re-enrollment, records the completion, and produces the proof that the cadence was met. 
5. Per-branch and per-cost-center filtering. A branch-specific exam pulls only that branch’s records. A regional exam pulls a region’s records. The LMS supports the slice the examiner asks for. 
6. Board and senior management group with separate tracking. A small group with a foundational training assignment, tracked the same way as the front-line groups but with content sized to the audience. 

The training manager configures the platform once. The platform owns the calendar. The training manager handles the exceptions: a new hire who joins mid-quarter, a teller who promotes to lender and needs a new path, a board meeting that adjusts the timing of the board’s training session. A bank running on an LMS that holds these six capabilities together has very little to reconstruct at exam time. 

KnowledgeCity for Branch Bank BSA/AML Documentation 

KnowledgeCity’s workforce development platform combines learning, skill assessment, performance management, and compliance under one login. The LMS includes a Compliance and Assignment Engine with rule-based recurring assignments and an audit-ready trail, Certification and Recertification with automated issuance and expiry-driven renewal, Bulk Assignment with Exclusions, a Branded Portal with gamification, Native Mobile Apps for iOS and Android with offline content, and Analytics and Integrations covering compliance dashboards, SSO, SCIM, HRIS, and webhooks. Each of these maps directly to the six documentation capabilities described above. 

The KnowledgeCity finance and retail-banking library covers retail-banking compliance topics at the teller and operations level, including topics in retail banking compliance, risk-based compliance, teller compliance, ethics and privacy in financial services, regulatory and compliance training, fraud prevention, and security for banks and financial institutions. 

A buyer evaluating KnowledgeCity for BSA/AML documentation should review the specific course catalog against the bank’s required topic coverage. The procurement question is the same for any vendor: does the platform deliver the six capabilities that make exam-day documentation routine? 

Frequently Asked Questions 

1. What does 31 CFR 1020.210 require for BSA/AML training? 

31 CFR 1020.210 requires every bank regulated by a federal functional regulator to develop and implement an Anti-Money Laundering program that includes, at a minimum, five elements: a system of internal controls, independent testing, designation of an individual responsible for coordinating compliance (the BSA Compliance Officer), training for appropriate personnel, and risk-based ongoing customer due diligence. The training requirement is one of the five pillars. The regulation refers to appropriate personnel rather than a fixed list of roles, which means the bank’s policy defines who is in scope and how each role’s training differs. 

2. How often must BSA/AML training be conducted? 

The federal regulations do not set a fixed annual training mandate. The FFIEC BSA/AML Examination Manual describes training as periodic and tied to current developments in BSA regulatory requirements and to the bank’s risk profile. Most banks adopt an annual training policy as practical implementation, and that policy then becomes the bank’s documented cadence. The examiner will hold the bank to its own stated frequency. If the policy says annual, the records should show annual completion for every employee in scope. 

3. Are board members required to receive BSA/AML training? 

The FFIEC BSA/AML Examination Manual establishes that the board of directors and senior management should receive foundational training and be informed of changes and new developments in the BSA. The board does not need the same depth of training as front-line operations staff, but it needs documented foundational training so the board can provide oversight of the BSA/AML compliance program, including approval of the written program. Inadequate board or senior management BSA training is a pattern commonly observed in published enforcement actions, so the documentation should be on record. 

4. What banking compliance content does KnowledgeCity publish? 

KnowledgeCity’s finance and retail-banking library publicly covers topics including retail banking compliance, risk-based compliance, teller compliance, ethics and privacy in financial services, regulatory and compliance training, fraud prevention, and security for banks and financial institutions. The KnowledgeCity LMS includes a Compliance and Assignment Engine, Certification and Recertification, Bulk Assignment with Exclusions, a Branded Portal, Native Mobile Apps, and Analytics and Integrations. Buyers evaluating KnowledgeCity for BSA/AML training should review the specific course catalog against the bank’s required topic coverage, since the publicly visible course titles do not all use the BSA or AML phrasing directly.  

References 

• FinCEN. 31 CFR 1020.210, Anti-Money Laundering Program Requirements for Banks. https://www.ecfr.gov/current/title-31/subtitle-B/chapter-X/part-1020/subpart-B/section-1020.210 
• FFIEC. BSA/AML Examination Manual, BSA/AML Training section. https://bsaaml.ffiec.gov/manual/AssessingTheBSAAMLComplianceProgram/05 
• FinCEN. 31 CFR 1020.320(e), Confidentiality of Suspicious Activity Reports. https://www.ecfr.gov/current/title-31/subtitle-B/chapter-X/part-1020/subpart-C/section-1020.320 
• FFIEC. Examiner Authority and Examination Frequency (12 USC 1818(s); 12 USC 1786(q); 12 USC 1820(d)(4)). https://bsaaml.ffiec.gov/manual/AssessingTheBSAAMLComplianceProgram/03 
• FinCEN. Customer Due Diligence (CDD) Final Rule, effective May 11, 2018. https://www.fincen.gov/resources/statutes-and-regulations/cdd-final-rule 
• FFIEC. BSA/AML Examination Manual, What’s New (February 27, 2026 updates). https://bsaaml.ffiec.gov/whatsnew 
• Federal Reserve. 12 CFR 208.63(c)(4), BSA Compliance Program. https://www.ecfr.gov/current/title-12/chapter-II/subchapter-A/part-208 
• FDIC. 12 CFR 326.8(c)(4), BSA Compliance Program. https://www.ecfr.gov/current/title-12/chapter-III/subchapter-B/part-326 
• NCUA. 12 CFR 748.2(c)(4), BSA Compliance Program. https://www.ecfr.gov/current/title-12/chapter-VII/subchapter-A/part-748 
• OCC. 12 CFR 21.21(d)(4), BSA Compliance Program. https://www.ecfr.gov/current/title-12/chapter-I/subchapter-B/part-21 
• KnowledgeCity. Compliance Training, LMS, and Banking Library. https://www.knowledgecity.com