Skip to main content

Promontory

Promontory is a risk management, regulatory compliance, and strategic advisory firm serving financial institutions, corporations, and public-sector entities.

  • Risk management consulting for financial institutions and corporates
  • Regulatory compliance advisory for banking, securities, and related sectors
  • Strategy and governance consulting for boards and executive leadership
  • Regulatory response, remediation, and enforcement-related advisory services
  • Data, modeling, and analytical support for risk and compliance programs

More About Promontory

Promontory provides advisory services to financial institutions, large corporates, and public-sector organizations focusing on risk management, regulatory compliance, and corporate governance. Its work typically aligns with the needs of banks, insurers, asset managers, payments firms, fintechs, and other entities operating within regulated markets. Engagements often support clients’ interactions with supervisors and regulators, implementation of regulatory frameworks, and enhancement of enterprise-wide risk and compliance capabilities.

The firm’s offerings span Enterprise Risk Management (ERM), credit risk, operational risk, conduct and culture risk, and financial crimes compliance, as well as prudential and liquidity risk topics. In regulatory compliance, Promontory supports interpretation and implementation of banking, securities, consumer protection, and anti-money laundering regulations, among others, assisting clients in designing policies, procedures, and control frameworks aligned with applicable rules. The firm also supports regulatory change management and helps institutions map regulatory requirements into actionable operating models and governance structures.

Promontory’s advisory work frequently involves the design and assessment of governance frameworks at board and executive levels, including risk governance structures, three-lines-of-defense models, and escalation and reporting mechanisms. It supports clients with board education and training on regulatory expectations and risk topics, and with the development of charters, committee structures, and oversight protocols. This work is often integrated with enterprise risk and compliance programs so that governance structures are connected with day-to-day risk identification, measurement, and reporting.

The firm uses data and analytical methods to support risk and compliance engagements, such as in model governance, stress testing, scenario analysis, and transaction monitoring programs. While it does not market itself primarily as a technology vendor, its teams work with clients’ internal systems, data architectures, and control processes, and provide guidance on how these can support regulatory and risk objectives. In areas such as anti-money laundering and sanctions, Promontory helps organizations evaluate and enhance monitoring, filtering, and case management processes, often in coordination with clients’ existing platforms and tools.

Promontory also assists institutions in responding to regulatory examinations, remediation mandates, and enforcement actions, including Root Cause Analysis (RCA), program redesign, implementation support, and independent reviews where appropriate. Its positioning in the market aligns with consulting categories such as risk and regulatory advisory, compliance consulting, governance consulting, and financial crimes consulting. For enterprise technical stakeholders and control-function leaders, Promontory is typically relevant as a strategic partner in designing, assessing, and implementing risk and compliance frameworks that intersect with data, technology, and operating model decisions.

At-A-Glance

  • Employees: 900

Connect

Corporate Headquarters

Washington, DC

Market Segmentation

  • Type: Private
  • Sector: Financials
  • Group: Diversified Financials
  • Industry: Diversified Financial Services
  • Sub-Industry: Financial Services