FDIC Bank Examination and Supervision Process
The FDIC's examination and supervision authority is one of the primary mechanisms through which the federal government monitors the safety, soundness, and legal compliance of insured depository institutions. This page covers how the examination cycle is structured, what triggers different types of reviews, how findings are classified, and where the process intersects with enforcement. Understanding the mechanics of bank supervision is essential for interpreting regulatory ratings, enforcement actions, and the conditions under which a bank may be designated a problem institution.
- Definition and scope
- Core mechanics or structure
- Causal relationships or drivers
- Classification boundaries
- Tradeoffs and tensions
- Common misconceptions
- Checklist or steps (non-advisory)
- Reference table or matrix
Definition and scope
The FDIC holds examination authority over state-chartered banks that are not members of the Federal Reserve System — a class commonly referred to as state nonmember banks. This jurisdiction is grounded in the Federal Deposit Insurance Act (12 U.S.C. § 1820), which grants the FDIC power to examine any insured depository institution as often as deemed necessary. As of 2023, the FDIC directly supervises approximately 3,000 state nonmember banks and savings institutions (FDIC Annual Report 2023).
Supervision extends beyond routine examinations to include off-site monitoring, targeted reviews, and coordinated oversight with state banking regulators. For institutions chartered under state law, FDIC examiners typically conduct joint examinations alongside the relevant state banking department. The scope encompasses risk management practices, capital adequacy, asset quality, earnings, liquidity, sensitivity to market risk, and compliance with consumer protection statutes.
The broader FDIC mission — detailed on the FDIC mission and mandate page — positions examination authority as a core instrument for protecting the Deposit Insurance Fund (DIF) and maintaining public confidence in the banking system.
Core mechanics or structure
The examination cycle for most community banks operates on an 18-month schedule, though institutions with total assets exceeding $3 billion or those exhibiting elevated risk profiles are subject to 12-month examination cycles (12 U.S.C. § 1820(d)). Certain well-rated banks with assets under $3 billion and satisfactory supervisory histories may qualify for the extended 18-month interval under conditions established by the Economic Growth, Regulatory Relief, and Consumer Protection Act of 2018 (Pub. L. 115-174).
Types of examinations conducted by the FDIC:
- Risk Management Examinations (Safety and Soundness): The primary periodic review. Examiners evaluate capital adequacy, asset quality, management effectiveness, earnings performance, liquidity, and market risk sensitivity using the CAMELS rating framework. The FDIC CAMELS rating system assigns composite scores from 1 (strongest) to 5 (weakest).
- Consumer Compliance Examinations: Assess adherence to consumer protection laws, including the Equal Credit Opportunity Act, the Truth in Lending Act, and the Community Reinvestment Act. These may be conducted simultaneously with or separately from safety-and-soundness reviews. The FDIC consumer compliance supervision framework governs this process.
- Information Technology (IT) Examinations: Evaluate cybersecurity controls, business continuity planning, and technology risk governance. IT reviews may be standalone or integrated into the risk management examination.
- Trust Examinations: Apply to banks operating fiduciary or trust departments, assessing compliance with applicable fiduciary standards.
- Specialty Examinations: Targeted reviews triggered by specific risk signals, complaints, or supervisory concerns outside the standard cycle.
Pre-examination preparation involves off-site analysis of call report data, prior examination findings, and supervisory event history. On-site fieldwork typically lasts one to three weeks for community institutions. Upon completion, examiners deliver a Report of Examination (ROE) to the bank's board of directors, which is a confidential supervisory document not available to the public under standard disclosure rules.
Causal relationships or drivers
The frequency and intensity of examinations is driven by a combination of statutory mandates and risk-based triggers. Institutions rated CAMELS composite 3, 4, or 5 receive more frequent attention; banks assigned a 4 or 5 rating are placed on the FDIC problem bank list and face expedited supervisory response.
Capital levels are a primary driver. An institution falling below the "adequately capitalized" threshold under 12 C.F.R. Part 325 triggers a cascade of supervisory obligations, including mandatory notification, capital restoration plans, and potential restrictions on dividend payments and asset growth. The FDIC capital requirements framework specifies these thresholds in detail.
Macroeconomic stress events also influence supervisory intensity. Following concentrated credit losses in commercial real estate lending during the 2008–2009 financial crisis, the FDIC increased targeted loan portfolio reviews across multiple institution cohorts. Supervisory letters and examination guidance published on FDIC.gov document these periodic calibrations.
Complaint volume submitted through the FDIC complaint process can generate targeted consumer compliance reviews independent of the standard examination schedule. Material weaknesses identified in prior Reports of Examination that remain unresolved also accelerate the next scheduled review.
Classification boundaries
Examination authority does not apply uniformly across all federally insured institutions. The FDIC's primary supervisory jurisdiction is confined to state nonmember banks. Three other federal agencies hold primary examination authority over distinct institution classes:
- Office of the Comptroller of the Currency (OCC): Nationally chartered banks and federal savings associations.
- Federal Reserve Board: State-chartered banks that are members of the Federal Reserve System, as well as bank holding companies.
- National Credit Union Administration (NCUA): Federally insured credit unions. The FDIC vs. NCUA comparison page addresses the structural distinctions between these two deposit insurance regimes.
The FDIC retains backup examination authority over all insured institutions — including those primarily supervised by the OCC or Federal Reserve — under 12 U.S.C. § 1820(b). This backstop authority is rarely exercised but remains available when the FDIC determines the primary supervisor is not addressing material risks to the DIF.
Consumer compliance jurisdiction also has a distinct boundary: banks with assets of $10 billion or more fall under the primary consumer protection supervision of the Consumer Financial Protection Bureau (CFPB), even if the FDIC retains safety-and-soundness authority (Dodd-Frank Act § 1025, 12 U.S.C. § 5515).
Tradeoffs and tensions
Examiner discretion vs. consistency: The CAMELS framework provides structured criteria, but substantial judgment is required when applying qualitative standards to management quality (the "M" component) and earnings sustainability. This discretion creates variability across FDIC regional offices, which operate from 8 regional headquarters. The FDIC's Division of Risk Management Supervision issues examination manuals to reduce inter-regional divergence, but the tension between standardization and contextual judgment is inherent to bank supervision.
Examination frequency vs. regulatory burden: More frequent examinations provide earlier warning of deterioration but impose direct costs on institutions through management time, document production, and operational disruption. Community banks — many with assets under $1 billion — have consistently raised concerns through the Independent Community Bankers of America (ICBA) that examination frequency and documentation demands are disproportionate relative to their systemic risk. The 18-month examination cycle for qualifying smaller banks represents a legislative response to this tension.
Confidentiality vs. market discipline: Reports of Examination are confidential supervisory documents. This confidentiality protects the examination process from gaming and protects banks from reputational harm based on preliminary findings. However, it also limits market participants' ability to independently assess institution risk — a tension that the public availability of call report data and the FDIC Statistics on Depository Institutions database partially addresses.
Backup authority vs. supervisory coordination: The FDIC's backup examination authority over OCC- and Federal Reserve-supervised institutions, while legally sound, creates coordination friction. Parallel examinations by two agencies with different methodologies impose dual costs and can produce conflicting findings. Interagency protocols documented under the Federal Financial Institutions Examination Council (FFIEC) structure attempt to manage this overlap.
Common misconceptions
Misconception: FDIC examination results are publicly available.
Correction: Reports of Examination are treated as confidential supervisory information under FDIC regulations (12 C.F.R. § 309.6). Banks are prohibited from disclosing the ROE contents without FDIC authorization. Aggregate data derived from examinations — such as call report statistics — is public, but institution-specific examination narratives and CAMELS ratings are not disclosed to the public.
Misconception: A CAMELS rating of 1 means the bank cannot fail.
Correction: A composite CAMELS 1 rating reflects strong performance at the time of examination, not a guarantee of future stability. Bank conditions can deteriorate rapidly between examination cycles. Silicon Valley Bank, for example, received supervisory ratings that did not immediately reflect the concentrated interest rate risk that contributed to its March 2023 failure (Federal Reserve Board Review of SVB, April 2023).
Misconception: The FDIC examines all banks with the word "FDIC-insured" in their materials.
Correction: FDIC insurance coverage and FDIC examination authority are distinct. A nationally chartered bank may carry FDIC deposit insurance but be examined by the OCC, not the FDIC. Insurance eligibility is separate from primary supervisory jurisdiction.
Misconception: Examination findings automatically trigger enforcement actions.
Correction: Most examination findings result in supervisory recommendations or Matters Requiring Attention (MRAs) documented in the ROE, which banks are expected to address before the next examination. Formal FDIC enforcement actions — such as consent orders or cease-and-desist orders — are reserved for situations where deficiencies are serious, persistent, or where the institution has demonstrated unwillingness to remediate.
Checklist or steps (non-advisory)
The following sequence describes the standard phases of an FDIC risk management examination as documented in FDIC examination policy:
- Pre-examination planning: FDIC regional office selects examination date based on statutory cycle and risk profile; transmittal letter sent to bank specifying information requests.
- Off-site data analysis: Examiners review call report data, prior ROE, supervisory correspondence, and third-party loan review reports submitted in advance.
- Scoping determination: Examination scope defined based on off-site analysis; high-risk areas (e.g., commercial real estate concentration, brokered deposit reliance) receive expanded fieldwork.
- On-site fieldwork: Examiners arrive at the institution; loan files, investment portfolios, internal audit reports, board minutes, and management information systems reviewed.
- Loan classification: Individual credits assessed against FDIC classification standards (Pass, Special Mention, Substandard, Doubtful, Loss); classified assets aggregated for capital impact analysis.
- Component rating assignment: Examiners assign preliminary ratings for each CAMELS component based on fieldwork findings.
- Exit meeting: Preliminary findings presented to bank management and board of directors; management given opportunity to provide factual corrections or additional documentation.
- Composite rating determination and ROE drafting: Findings finalized, composite CAMELS score assigned, formal Report of Examination drafted by examination team.
- ROE transmission: Final ROE transmitted to bank's board of directors with a response deadline; management response incorporated into supervisory file.
- Supervisory follow-up: Outstanding MRAs and recommendations tracked through supervisory contact; unresolved issues may accelerate next examination or prompt targeted follow-up reviews.
Reference table or matrix
| Examination Type | Primary Focus | Typical Frequency | Governing Framework |
|---|---|---|---|
| Risk Management (Safety & Soundness) | CAMELS components; capital, asset quality, management, earnings, liquidity, market risk | 12 or 18 months (statute-dependent) | 12 U.S.C. § 1820(d); FDIC RMS Examination Manual |
| Consumer Compliance | ECOA, TILA, CRA, HMDA, UDAP, FDCPA applicability | Generally aligned with safety-and-soundness cycle; varies by risk | FDIC Consumer Compliance Examination Manual |
| Information Technology | Cybersecurity, business continuity, technology governance | Integrated with risk management or standalone (risk-based) | FFIEC IT Examination Handbook |
| Trust | Fiduciary activities, trust account management | 18–24 months for qualifying institutions | 12 C.F.R. Part 9 (OCC analogous); FDIC trust examination policy |
| Specialty / Targeted | Specific risk signals: concentrations, complaints, prior MRAs | Triggered by supervisory judgment | FDIC regional supervisory discretion |
| Backup Examination | All institution types supervised primarily by OCC or Federal Reserve | Rarely exercised; discretionary | 12 U.S.C. § 1820(b) |
The full scope of the FDIC's supervisory framework — including how examination findings feed into insurance assessments, problem bank designations, and resolution planning — is documented across the fdicauthority.com reference network, which organizes FDIC topics by functional area for structured research access.