Tag Archives: third-party due diligence

What Is To Be Done with Mortgage Servicers?

Posted on by

The Office of the Comptroller of the Currency has found that EverBank; HSBC Bank USA, N.A.; JPMorgan Chase Bank, N.A.; Santander Bank, National Association; U.S. Bank National Association; and Wells Fargo Bank, N.A. have not met all of the requirements of consent orders they had entered into because of deficiencies in how they dealt with foreclosure servicing. The details of these deficiencies are pretty bad.

The OCC recently issued amended consent orders with these banks. The amended orders restrict certain business activities that they conduct. The restrictions include limitations on:

  • acquisition of residential mortgage servicing or residential mortgage servicing rights (does not apply to servicing associated with new originations or refinancings by the banks or contracts for new originations by the banks);
  • new contracts for the bank to perform residential mortgage servicing for other parties;
  • outsourcing or sub-servicing of new residential mortgage servicing activities to other parties;
  • off-shoring new residential mortgage servicing activities; and
  • new appointments of senior officers responsible for residential mortgage servicing or residential mortgage servicing risk management and compliance.

HSBC had the most deficiencies of the six:  it did not make 45 of the 98 changes it had agreed to over the last few years. I was particularly interested in the portion of the consent orders that relate to MERS. The HSBC consent order states:

(1) The Bank shall implement its Revised Action Plan and ensure appropriate controls and oversight of the Bank’s activities with respect to the Mortgage Electronic Registration System (“MERS”) and compliance with MERSCORPS’s membership rules, terms, and conditions (“MERS Requirements”), include, at a minimum:

(a) processes to ensure that all mortgage assignments and endorsements with respect to mortgage loans serviced or owned by the Bank out of MERS’ name are executed only by a certifying officer authorized by MERS and approved by the Bank;

(b) processes to ensure that all other actions that may be taken by MERS certifying officers (with respect to mortgage loans serviced or owned by the Bank) are executed by a certifying officer authorized by MERS and approved by the Bank;

(c) processes to ensure that the Bank maintains up-to-date corporate resolutions from MERS for all Bank employees and third-parties who are certifying officers authorized by MERS, and up-to-date lists of MERS certifying officers;

(d) processes to ensure compliance with all MERS Requirements and with the requirements of the MERS Corporate Resolution Management System (“CRMS”);

(e) processes to ensure the accuracy and reliability of data reported to MERSCORP and MERS, including monthly system-to-system reconciliations for all MERS mandatory reporting fields, and daily capture of all rejects/warnings reports associated with registrations, transfers, and status updates on open-item aging reports. Unresolved items must be maintained on open-item aging reports and tracked until resolution. The Bank shall determine and report whether the foreclosures for loans serviced by the Bank that are currently pending in MERS’ name are accurate and how many are listed in error, and describe how and by when the data on the MERSCORP system will be corrected; and

(f) an appropriate MERS quality assurance workplan, which clearly describes all tests, test frequency, sampling methods, responsible parties, and the expected process for open- item follow-up, and includes an annual independent test of the control structure of the system-to- system reconciliation process, the reject/warning error correction process, and adherence to the Bank’s MERS Plan.

(2) The Bank shall include MERS and MERSCORP in its third-party vendor management process, which shall include a detailed analysis of potential vulnerabilities, including information security, business continuity, and vendor viability assessments.

These should all be easy enough for a financial institution to achieve as they relate to basic corporate practices (e.g., properly certifying officers); basic data management practices (e.g., system-to-system reconciliations); and basic third-party vendor practices (e.g., analyzing potential vulnerabilities of vendors).

It is hard to imagine why these well-funded and well-staffed enterprises are having such a hard time fixing their servicing operations. We often talk about governments as being too poorly run to handle reform of complex operations, but it appears that large banks face the same kinds of problems.

I am not sure what the takeaway is in terms of reform, but it does seem that homeowners need protection from companies that can’t reform themselves while they are under stringent consent orders with their primary regulator for years and years.

S&P on Risky Reps and Warranties

Posted on by

Standard & Poor’s posted New Players In The RMBS Market Could Present Unique Representations And Warranties Risks. It opens, S&P

believes that new entrants into the residential mortgage-backed securitization (RMBS) market that make loan-level representations and warranties (R&Ws) may present additional risks not present with more established market players. Many of these new entrants not only lack historical loan performance data, but have not yet established track records for remedying any R&W breaches. This can call into question their ability or willingness to repurchase under R&W provisions. In light of this, mitigating factors may exist that could alleviate the risk of a potential R&W breach. (1)

This all sounds pretty serious, but I am not so sure that it is.

S&P explains its concerns further:

We believe it is important for investors and other market participants to evaluate the quality and depth of various factors that mitigate the risk of R&W breaches occurring in U.S. RMBS transactions, including those that would be remedied by new entities with limited histories and the risk that comes with their willingness or ability to do so. Specifically, we believe the quality and scale of third-party due diligence, the depth of operational reviews, and a transaction’s overall expected losses, are critical for assessing the risk of a breach and if a new entity would be remedying it. We consider all of these aspects in our assessment of the credit characteristics of loans that are securitized in U.S. RMBS deals. (1)

One assumes that every party to every transaction would consider the counterparty risk — the risk that the other side of a deal won’t or can’t make good on its obligations. Regular readers of this blog also know that many well-known companies have attempted to avoid their responsibilities pursuant to reps and warranties clauses. So, when S&P states that “the quality and scale of third-party due diligence, the depth of operational reviews, and a transaction’s overall expected losses, are critical for assessing the risk of a breach and if a new entity would be remedying it,” one wonders why this is more true for new players than it is for existing ones.

Further undercutting itself, this report notes that “post-2008 issuers have been addressing many of these potential R&W risks, including newer players. The level of third-party due diligence in recently issued U.S. RMBS for example has been more comprehensive from a historical (pre-2008) perspective in terms of the number of loans reviewed and the scope of the reviews.” (1)

So I am left wondering what S&P is trying to achieve with this report. Are they really worried about new entrants to the market? Are they signalling that they will take a tough stance on lowering due diligence standards as the market heats up? Are they favoring the big players in the market over the upstarts? I don’t think that this analysis stands up on its own legs, so I am guessing that there is something else going on.  If anyone has a inkling as to what it is, please share it with the rest of us.