When Policy Meets Practice, Does Your Organisation Hold Up?

The Problem

Regulatory Risk Thrives in the Gap Between Training and Action.

Organisations invest heavily in compliance training, yet regulators continue to identify the same failures. This isn’t due to a lack of policies or training completion, but rather the gap between training and real-world application.

Research indicates that individuals forget up to 70% of training content within a day and up to 90% within a week. Long, one-time training sessions fail to bridge this gap, as knowing something in theory differs from applying it at work.

Regulators, such as the FCA and FinCEN, now require firms to demonstrate that staff can effectively interpret and act on compliance obligations in practical scenarios, with heightened enforcement observed in 2025 and early 2026.

What Recent Enforcement Tells Us

In 2024, TD Bank was fined USD 3.09 billion for failing to identify suspicious transactions, with staff allegedly facilitating money laundering. Santander UK faced a £107.7 million fine due to staff's inadequate knowledge despite training, while Standard Chartered was fined £102 million for failing to apply AML controls at its UAE branches.

In July 2025, Monzo was fined £21.1 million for financial crime control failings as its rapid growth outpaced staff capability and governance. Barclays received a £39.3 million fine that same month for failing to act on alerts related to a high-risk corporate relationship.

In February 2026, J.P. Morgan was fined €12.2 million for misreporting long-term risk, and Crédit Agricole was fined €7.6 million for failing to meet a climate risk assessment deadline, highlighting capability gaps across various risk domains.

The UK’s Failure to Prevent Fraud offence took effect on 1 September 2025, making large organisations criminally liable if they cannot prove effective fraud prevention measures. The key issue is not just training volume but how well it translates into practical application, as conventional training methods are insufficient to address these problems.

What is Argus Pro Assess?

Scenario-Based Capability Assessments, Tied to Regulatory Change

Argus Pro Assess - Powered by Traverse - is not a training platform. It does not deliver content or issue completion certificates. It evaluates whether your people can apply what your policies require, in realistic, role-relevant scenarios built around the obligations that actually apply to them.

When a regulatory change creates a new obligation, whether in anti-financial crime, cybersecurity, or operational resilience, Argus Pro Assess translates that change into targeted, scenario-based capability assessments for the specific teams and roles affected. The result is a clear picture of organisational readiness at the role, team, and firm level, presented in a format that compliance leaders and boards can use with confidence.

This is not about testing knowledge in isolation. It is about testing the ability to interpret and act in conditions that mirror real working situations. The difference matters. A relationship manager who can answer an AML quiz is not the same as one who recognises a red flag, understands the escalation path, and takes the right action under time pressure.

The Ecosystem

From Regulatory Change to Demonstrated Capability: One Continuous Loop

Argus Pro Assess - Powered by Traverse - does not operate in isolation. It connects into a continuous compliance loop across three integrated platforms. Each platform builds on the last, and the cycle begins again each time a regulatory change requires a response. Together, they give compliance leaders a complete line of sight from the moment obligations change through to the point where your people can demonstrate they can act on them.

Together, these three platforms create a continuous loop: from detecting what has changed, to understanding what it means for your controls, to confirming that your people can apply it in practice. The loop then resets; each new regulatory development feeds back into the cycle. No gap between policy and reality. No reliance on training completion as a proxy for competence.

How it Works

From Baseline to Targeted Response

Argus Pro Assess - Powered by Traverse - operates within a continuous compliance loop. The process begins with an understanding of your current position, monitors how regulatory change affects it, and then identifies specifically where staff capability needs to be confirmed or strengthened. The cycle is triggered by what changes, not by an annual calendar.

Proportionate by Design

How the Response Is Calibrated: The Messy Middle

Not every regulatory change requires a full training programme, a firm-wide assessment, and a formal demonstration of capability. One of the most common sources of compliance fatigue is the tendency to apply the same response to every update, regardless of the actual risk involved. That is costly, disruptive, and often counterproductive.

The so-called "messy middle" is the practical challenge of deciding what genuinely requires a people response, and what kind. Once NexEdge™ identifies a material gap and the policy analysis confirms that staff need to do something differently, the question becomes: how significant is that change, and what level of intervention does it warrant?

The distinction between these tiers is not made by an algorithm alone. Domain experts in anti-financial crime, cybersecurity, operational resilience, AI governance, and ESG review material changes. They identify which require training, policy updates, notifications, or formal assessments. A governance layer then signs off on what reaches people, balancing policy intent, risk appetite, and operational reality. These decisions feed directly into the learning and assessment planning cycle.

Demonstrating Readiness

What Regulators Expect, and How the Ecosystem Delivers It

Regulators are not expecting perfection in real time. They expect firms to know what has changed, respond in proportion to the risk, and show that their people can actually apply the rules.

The FCA has made clear that “inadequacy of training for staff” is a recurring weakness in enforcement actions. FinCEN noted in the TD Bank case that management “failed to properly ensure that the requisite employees received appropriate training”, not training in name, but training that equipped staff to act. MAS, APRA, the RBI, and the CBUAE have all issued similar findings across their respective jurisdictions.

What regulators consistently ask for is a line of sight: a clear, traceable path from a regulatory change through to the point where a specific person, in a specific role, has demonstrated that they understand and can apply that change in practice. That is exactly what the Argus Pro ecosystem provides.

A Different Approach

Why Conventional Compliance Training Has a Structural Weakness

Most compliance training is designed to demonstrate that a course was attended, not that anything changed as a result. The limitations are well documented by regulators, by behavioural scientists, and by the outcomes of enforcement actions around the world.

Built for Senior Compliance Leaders

Benefits for Compliance Leaders

Built for Regulated Organisations and the Leaders Responsible for Compliance

Frequently Asked Questions