Concurrent Audit of Banks- Checklist
To carry the concurrent audit assignment successfully, it is necessary for auditor to familiarize himself with following:
- Compliance of RBI Guidelines relating to Concurrent Audit System in Commercial Banks
- Submission of Long Form Audit Report (LFAR) by Concurrent Auditors
- Concurrent Auditors to submit NPA review reports (Specimen of the Review Report)
- Scope of Audit
- Existing Banking Practices and Guidelines for bank audit
- Execution of Audit
- Quality of report
- Timely submission of audit report
Latest Books on Concurrent Audit of Banks
Compliance of RBI Guidelines relating to Concurrent Audit
Concurrent Audit System in Commercial Banks – Revision of RBI’s Guidelines (RBI/2015-16/133
DBS.CO.ARS.No. BC. 2/08.91.021/2015-16 Dated 16.07.2015)
Revised Guidelines for Concurrent Audit System in Commercial Banks
(A) Scope of concurrent audit
Concurrent audit is an examination which is contemporaneous with the occurrence of transactions or is carried out as near thereto as possible. It attempts to shorten the interval between a transaction and its examination by an independent person. There is an emphasis in favour of substantive checking in key areas rather than test checking. This audit is essentially a management process integral to the establishment of sound internal accounting functions and effective controls and setting the tone for a vigilant internal audit to preclude the incidence of serious errors and fraudulent manipulations.
A concurrent auditor may not sit in judgement of the decisions taken by a branch manager or an authorised official. This is beyond the scope of concurrent audit. However, the audit will necessarily have to see whether the transactions or decisions are within the policy parameters laid down by the Head Office, they do not violate the instructions or policy prescriptions of the RBI, and that they are within the delegated authority.
In very large branches, which have different divisions dealing with specific activities, concurrent audit is a means to the in-charge of the branch to ensure on an ongoing basis that the different divisions function within laid down parameters and procedures.
(B) Coverage of business/branches
In view of significant developments in the banking sector during the past decade, it is required that new areas posing risk may be brought under the purview of concurrent audit. A large number of activities / operations are being carried out in a centralized manner at various units set up for that purpose and the scale of transactions / operations undertaken at these units is large. With a view to ensuring that the functioning of these units is as per the internal as well as regulatory guidelines and mitigating the risk associated with large-scale operations, such non-branch units may be brought under the purview of concurrent audit.
While selecting the branches for concurrent Audit, the risk profile of the branches needs to be considered. The branches with high risk are to be subjected to concurrent audit irrespective of their business size. Further, all specialized branches viz., Agri, SME, Corporate, Retail Assets, Portfolio Management, Treasury, Forex, Back Office, etc., may be covered under concurrent audit. Certain areas where risk has reduced on account of computerization, implementation of core banking system may be excluded from the purview of concurrent audit.
Concurrent audit at branches should cover at least 50% of the advances and 50% of deposits of a bank. The following branches, business activities/verticals of a bank may be subject to concurrent audit:
- Branches rated as high risk or above in the last Risk Based Internal Audit (RBIA) or serious deficiencies found in Internal Audit.
- All specialized branches like Large Corporate, Mid Corporate, exceptionally large/very large branches (ELBs/VLBs), SME.
- All Centralised Processing Units like Loan Processing Units (LPUs), service branches, centralized account opening divisions, etc.
- Any specialized activities such as wealth management, portfolio management services, Card Products Division, etc.
- Data Centres.
- Treasury/branches handling foreign exchange business, investment banking, etc. and bigger overseas branches.
- Critical Head Office Departments.
- Any other branches or departments where, in the opinion of the bank, concurrent audit is desirable.
(C) Types of activities to be covered
(1) The main role of concurrent audit is to supplement the efforts of the bank in carrying out simultaneous internal check of the transactions and other verifications and compliance with the procedures laid down.
(2) The scope of concurrent audit should be wide enough/focused to cover certain fraud – prone areas such as handling of cash, deposits, advances, foreign exchange business, off-balance sheet items, credit-card business, internet banking, etc.
(3) The detailed scope of the concurrent audit should be clearly and uniformly determined for the bank as a whole by the bank’s Inspection and Audit Department in consultation with the bank’s Audit Committee of the Board of Directors (ACB).
(4) In determining the scope, importance should be given to checking high-risk transactions having large financial implications as opposed to transactions involving small amounts.
(5) While the detailed scope of concurrent audit may be determined and approved by ACB, certain minimum items of coverage are given in Annex II. In addition to the above, the items where RBI has specifically advised the banks to be covered under concurrent audit, may also be part of the checklist of the concurrent auditor.
(D) Appointment of Auditors and Accountability
(i) The option to consider whether concurrent audit should be done by bank’s own staff or external auditors (which may include retired staff of its own bank) is left to the discretion of individual banks.
(ii) In case the bank has engaged its own officials, they should be experienced, well trained and sufficiently senior. The staff engaged in concurrent audit must be independent of the Branch where concurrent audit is conducted.
(iii) Appointment of an external audit firm may be initially for one year and extended upto three years, after which an auditor could be shifted to another branch subject to satisfactory performance.
(iv) If external firms are appointed and any serious acts of omission or commission are noticed in their working, their appointments may be cancelled and the fact may be reported to RBI & ICAI.
(E) Facilities for effective Concurrent Audit
It has been represented that concurrent audit is not often effective because adequate facilities in terms of space, availability of records, etc. are not available. To improve the effectiveness of concurrent audit it is suggested that –
(i) banks arrange for an initial and periodical familiarisation process both for the bank’s own staff when entrusted with the concurrent audit and for the external auditors appointed for the purpose.
(ii) all relevant internal guidelines/circulars/important references as well as relevant circulars issued by RBI/SEBI and other regulating bodies should be made available to the concurrent auditors on an on-going basis.
(iii) where adequate space is not available, concurrent auditors can commence work immediately after the close of banking hours.
Terms of appointment of the external firms of Chartered Accountants for the concurrent audit and their remuneration may be fixed by banks at their discretion. Broad guidelines should be framed by ACB for this purpose. Suitable packages should be fixed by each bank’s management in consultation with its ACB, keeping in view various factors such as coverage of areas, quality of work expected, number of people required for the job, number of hours to be spent on the job, etc.
(G) Reporting Systems
(i) The bank may devise a reporting system and periodicity of various check list items as per its sensitivity.
(ii) Minor irregularities pointed out by the concurrent auditors are to be rectified on the spot. Serious irregularities should be straightaway reported to the Controlling Offices/Head Offices for immediate action.
(iii) There should be zone/area-wise reporting of the findings of the concurrent audit to ACB and an annual appraisal/report of the audit system should be placed before the ACB.
(iv) Whenever fraudulent transactions are detected, they should immediately be reported to Inspection & Audit Department (Head Office) as also to the Chief Vigilance Officer as well as Branch Managers concerned (unless the branch manager is involved).
(v) There should be proper reporting of the findings of the concurrent auditors. For this purpose, each bank should prepare a structured format. The major deficiencies/aberrations noticed during audit should be highlighted in a special note and given immediately to the bank’s branch controlling offices. A quarterly review containing important features brought out during concurrent audits should be placed before the ACB.
(vi) Follow-up action on the concurrent audit reports should be given high priority by the Controlling Office/Inspection and Audit Department and rectification of the features done without any loss of time.
(vii) Banks are advised to :
(1) review the selection of auditors.
(2) initiate and operate a system for appraisal of the performance of concurrent auditors.
(3) ensure that the work of concurrent auditors is properly documented.
(4) be responsible for the follow-up on audit reports and the presentation of the quarterly review to the ACB.
Minimum Audit Programme for Concurrent Audit System in Commercial Banks
Sr. No. Items
A Cash transactions -Verify
(i) Surprise physical verification of cash at branch and ATM along with safekeeping and custody.
(ii) Daily cash transactions, particularly any abnormal receipts & payments.
(iii) Surprise verification of cash by an officer other than the joint custodian.
(iv) Proper accounting of and availability of insurance cover for inward and outward cash remittances.
(v) Accounting of currency chest transactions and delays/omission in reporting to RBI.
(vi) Reporting of Counterfeit Currency.
(vii) All cash transactions of Rs. 10 lakh and above reported in CTR.
(viii) That all cash transaction of Rs. 50,000 and above invariably indicate Pan No./Form 60.
B Clearing transactions -Verify
(i) Reconciliation with bank’s account at Clearing House and review of old outstanding entries for reconciliation.
(ii) Drawings allowed against uncleared instruments – sanction by the controlling authority.
C Remittances/Bills for Collection -Verify
(i) Remittance of funds by way of DDs/TTs/MTs/TC/NEFT/RTGS any other mode in cash exceeding the prescribed limit.
(ii) Documents of title (lorry receipts, railway receipts, etc.) obtained in favour of the bank and the concerned transporters are on the IBA approved list.
(iii) Outstanding balance in DP and other transit accounts pending payment beyond prescribed period.
D Deposits -Verify
(i) Adherence to KYC/AML guidelines in opening of fresh accounts and monitoring of transactions in such accounts.
(ii) Large term deposits received and repaid including checking of repayment of term deposit in cash beyond permissible limit.
(iii) Accounts opened and closed within a short span of time i.e., accounts with quick mortality.
(iv) Activation and operations in inoperative accounts.
(v) Value dated transactions.
(vi) Settlement of claims of deceased customers and payment of TDRs against lost receipts and obtention of indemnities, etc. To check revival of dormant accounts and accounts with minimum activities.
(vii) Examination of multiple credits to single accounts.
E Treasury operations -Verify
(i) If branch has acted within HO instructions for purchase and sale of securities.
(ii) Periodic confirmation of Derivative contracts with counterparties.
(iii) Adherence to regulatory guidelines with respect to Treasury deals/structured deals.
(iv) Controls around deal modification/cancellation/deletion, wherever applicable.
(v) Cancellation of forward contracts and passing/recovery of exchange gain/loss.
(vi) Gaps and OPL maintained in different currencies vis-à-vis prescribed limit for the same.
(vii) Reconciliation of Nostro and Vostro accounts-balances in Nostro accounts in different foreign currencies are within the limits prescribed by the bank.
(viii) Collection of underlying documents for Derivative & Forward contracts. Delays, if any.
(ix) Instances of booking and cancellation of forward contracts with the same counterparty within a span of couple of days or a few days.
(x) Sample check some of the deals and comment on the correctness of computation.
(xi) Checking of application money, reconciliation of SGL account, compliance to RBI norms.
(xii) Checking of custody of unused BR Forms & their utilization in terms of Master Circular on Prudential Norms on Classification, Valuation and Operations of Investment Portfolio by banks.
(xiii) To ensure that the treasury operations of the bank have been conducted in accordance with the instructions issued by the RBI from time to time.
F Loans & Advances-Verify
(i) Report Bills/cheques purchased, if in the nature of accommodation bills.
(ii) Proper follow-up of overdue bills purchased/discounted/negotiated.
(iii) Fresh loans and advances (including staff advances) have been sanctioned properly and in accordance with delegated authority.
(iv) Reporting of instances of exceeding delegated powers to controlling/head office by the branch and have been confirmed or ratified by the competent authority.
(v) Securities and documents have been received as applicable to particular loan.
(vi) Securities have been properly charged/ registered and valued by competent person. Whether the same has been entered in the bank’s system.
(vii) All conditions of sanction have been complied with.
(viii) Master data relating to limit, rate of interest, EMI, moratorium period details have been correctly entered and updated/modified in the system.
(ix) Value dated entries passed in advances accounts.
(x) Post disbursement supervision and follow-up is proper, such as timely receipt of stock and book debt statements, QIS data, analysis of financial data submitted by borrower, verification of securities by third parties, renewal of limits, insurance, etc.
(xi) Whether there is any misutilisation of the loans and whether there are instances indicative of diversion of funds.
(xii) Compliance of prudential norms on income recognition, asset classification and provisioning pertaining to advances.
(xiii) whether monthly updating of drawing power in the computer system on the basis of stock statements/book debt statement/ other financial data received from the borrowers.
(xiv) Recovery in compromise cases is in accordance with the terms and conditions of the compromise agreement.
(xv) To check review and renewal of loans.
G LC/BG -Verify
(i) LC/BG issued/amended as per the approved format/model guarantee prescribed and standard limitation clause incorporated. Whether counter indemnity obtained as prescribed.
(ii) Any deviation from the terms of sanction in regard to margin, security, purpose, period, beneficiary, collection of charges, commission/fee, etc.
(iii) Whether payment is made to the debit of party’s account on due date without creating overdraft/debiting suspense, in case of deferred payment guarantee.
H Foreign Exchange transactions-Verify
(i) Recovery of charges as per HO Guidelines.
(ii) Packing credit released, whether backed by LC or confirmed export order.
(iii) Availability of ECGC cover and compliance with ECGC terms.
(iv) Submission of statutory returns on export/ import transactions, like BEF statements, XOS, write off of export bills, etc. Follow up of outstanding export bills and exchange control copy of bill of entry.
(v) Irregularities in opening of new accounts and operation in NRO, FCNR, NRE, EEFC, etc., and debits/credits entries permissible under the rules.
(vi) Whether operations in FCRA accounts are as permitted by MHA and FCRA guidelines.
(vii) Booking, utilization, extension and cancellation of forward contracts.
I House Keeping -Verify
(i) Exceptional transaction reports are generated and verified by branch staff as prescribed.
(ii) Review of all balance sheet heads and outstanding entries in accounts, e.g., suspense, sundry and inter-bank accounts. Review of follow up of entries pending for reversal.
(iii) Scrutiny of daily vouchers with more emphasis on high value transaction including high value expenses and debit entries in Suspense account.
(iv) Debits in accounts where signatures are pending for scanning.
(v) Whether records related to KYC/vouchers and other critical areas are sent to specific places like archival center, record room as per stipulated periodicity.
(vi) Adherence to KYC/AML guidelines in opening fresh account and subsequent modifications of records and monitoring of transaction.
J Verification of Merchant Banking Business-Verify
(i) Whether the instructions given by the controlling branch are properly followed where the branch acts as a collecting branch for issue business.
(ii) Whether daily collection position is advised to the controlling branch.
(iii) Whether recovery of the commission/fees and out of pocket expenses as agreed with the respective companies and whether the competent authority has duly authorized any waiver or reduction of such charges.
(iv) Whether the prescribed preventive vigilance measures are observed by the branch.
(v) Where data entry or data processing work is entrusted to outside agencies, the competent authority duly approves these and the prescribed stamped indemnity has been obtained from such agencies.
(vi) Whether dividend interest warrants/refund payment accounts of companies are funded prior to dispatch of the relative warrants by the companies and there is no misuse of the facility.
(vii) Whether Claims for reimbursement of amounts of paid warrants received from paying branches are processed and debited to the concerned company’s account promptly.
(viii) Whether charge on security has been created, wherever debenture trustee activity is undertaken by bank.
K Verification of Credit Card/Debit card –Verify
(i) Application for the issue of credit card has been properly examined and record of issue of the same has been maintained.
(ii) Whether overdraft/debits arising out of the use of credit cards are promptly recovered and informed to higher authorities.
(iii) Whether undelivered credit cards are properly kept as security items and followed up with credit card department for further instructions.
(iv) Physical verification of ATM cards, debit cards, credit cards, passwords and PINS, control over issue & delivery, safe keeping and custody at all the locations. Report loss of any such items.
L Others –Verify
(i) Compliance of provisions relating to Tax Deducted at Source, service tax, trade tax, other duties and taxes.
(ii) Physical verification of inventory, control over issue of inventory, safe keeping and custody of security forms. Report any loss of such items.
(iii) Physical verification of other deliverable items, control over issue, safe keeping and custody.
(iv) Physical verification of Gold coins, control over issue, safe keeping and custody. Checking of Gold sale transactions.
(v) Custody and movement of branch keys.
(vi) Locker keys and locker operations-linking of FDR as security for locker/operation of locker/inoperative lockers/ nomination/other issues.
(vii) Safe custody of branch documents like death claim cases, issuance of duplicate DD/PO/FDR, checking of indemnities, etc. and verification of documents executed during the period under audit.
(viii) Reporting of frauds.
Submission of Long Form Audit Report (LFAR) by Concurrent Auditors
As per RBI/2014-15/626 DBS.CO.ARS.BC.8/08.91.001/2014-15 dated June 4, 2015
In terms of enclosure 1 of RBI circular DBS.CO.PP.BC.11/11.01.005/2001-2002 dated April 17, 2002 all the banks were advised, inter alia, as under:
LFAR in respect of branch should be addressed by the branch auditors to the Chairman of the bank, concerned with a copy thereof to the Central Statutory Auditors.
2. The above matter has been examined in light of Para B (1) (ii) of Guidelines for Appointment of Statutory Auditors in Public Sector Banks hosted on RBI web site (at link http://www.rbi.org.in/scripts/bs_viewcontent.aspx?Id=946#AN2) which is reproduced below:
In respect of branches below the cut-off point, which are subject to concurrent audit by chartered accountants, henceforth, LFARs and other certifications done earlier by SBAs will now be submitted by the concurrent auditors and such branches may not generally be subject to statutory audit.
3. You are advised that henceforth Concurrent Auditors, who are chartered accountants, of branches below the cut-off point will submit LFAR only to the Chairman of the bank. The banks in turn will consolidate/compile all such LFARs submitted by the Concurrent Auditors and submit to Statutory Central Auditor as an internal document of the bank.
Concurrent Auditors to submit NPA review reports (Specimen of the Review Report)
As per RBI/2015-16/186- DBS. ARS.No. BC. 5/08.91.001/2015-16 Dated September 23, 2015
Half yearly/Quarterly Review of Accounts of Public Sector Banks
Please refer to our circulars DBS.ARS.No.BC.13/08.91.001/2000-01 dated May 17, 2001, DBS.ARS.No.BC. 4/08.91.001/2001-02 dated October 25, 2001 and DBS.ARS.No. BC.17/08.91.001/2002-03 dated June 5, 2003 on conduct of Half yearly/Quarterly Review of Accounts of Public Sector Banks.
2. It is clarified that Concurrent Auditors shall henceforth submit their NPA review reports to the banks and not to Statutory Central Auditors (SCAs) undertaking the half yearly/quarterly review. Concurrent Auditors will therefore give their opinion on NPA figures to the banks and not to the SCAs, who for audit purpose will treat the branches covered by Concurrent Auditors as unaudited branches [para I (ii) of Annexure III of circular dated May 17, 2001].
3. SCAs, as in the past, will continue to review top 20 branches for half yearly/quarterly reviews and take into account review reports of overseas branches of public sector banks audited by the respective statutory auditor. SCAs will necessarily cover advances adversely commented upon in the latest inspection report of RBI, special audit/special scrutiny, if any carried out by the bank, RBI or any other agency, so that all problem accounts are taken care of during half yearly/quarterly review.
4. The balance portion of stipulated 50% of advances and NPAs, to be covered for half yearly/quarterly review, will be reviewed by SCAs through Core Banking System of the banks and management inputs viz. internal inspection reports, review reports by concurrent auditors etc. made available to them by banks. Consequently, the format for “Specimen of the Review Report” to be submitted by SCAs is revised and enclosed as Annex II.
5. The other instructions, as amended from time to time, shall remain unchanged.
Specimen of the Review Report
REVIEW REPORT TO
We have reviewed the accompanying financial results of ABC bank for the period ended September 30 xxxx. These financial results are the responsibility of the Bank’s management and have been taken on record by the Board of Directors.
The financial results incorporate the relevant returns of___ (number) branches reviewed by us, ____ (number) foreign branches reviewed by other auditors specially appointed for this purpose and unreviewed returns in respect of ___ (number) branches. In the conduct of our review, we have taken note of the review reports in respect of non-performing assets submitted by the concurrent auditors of ___ branches to the bank management, inspection teams of the bank of _____ branches and other firms of auditors of _____ branches specifically appointed for this purpose. These review reports cover _____ per cent of the advances portfolio of the bank.
A review of Financial Results consists principally of applying analytical procedures to financial data and making enquiries of persons responsible for financial and accounting matters. It is substantially less in scope than an audit conducted in accordance with the generally accepted auditing standards, the objective of which is the expression of an opinion regarding the financial statements taken as a whole. Accordingly, we do not express an audit opinion.
Based on our review as aforesaid, nothing has come to our attention that causes us to believe that the accompanying statement of unaudited financial results prepared in accordance with accounting standards and the relevant prudential norms issued by the Reserve Bank of India in respect of income recognition, asset classification, provisioning and other related matters, (has not disclosed the information required to be disclosed in terms of clause 41 of the Listing Agreement including the manner in which it is to be disclosed or that it)* contains any material misstatements.
For X & Co.,
Signature (Name of the Partner)
Partner Chartered Accountants
* Reference to this sentence be made only in case of banking companies required to make disclosures as per clause 41 of the Listing Agreement.
- Guidance Note on Audit of Banks 2016 edition released by ICAI
- Finacle commands for Bank Audit
- Fraud Accounts provisioning norms changed by RBI
- Compliances of Service Tax in Banking Sector
- Currency chests Banks to conduct fire audits bi-annually
- Mobile Banking transactions in India, Operative Guidelines for Banks
- RBI Guidelines for Internet Banking facility to Customers
- RBI Guidelines for lending to Micro and Small Enterprises
- RBI Review of Guidelines on Revitalising Stressed Assets in the Economy
- RBI Guidelines on trading of Cross-Currency Futures
- RBI Revised guidelines on Priority Sector Lending for Regional Rural Banks
- Sovereign Gold Bonds 2015 16 Operational Guidelines issued by RBI
- RBI Norms for Protecting Customers
- RBI : Recovery of excess payments made to pensioners
- RBI : Pradhan Mantri Fasal Bima Yojana compulsory for loanee farmers
- RBI clarify Legal Guardianship Certificates in case of person with mental disorder
- RBI Master Direction on Liberalised Remittance Scheme
- Mobile Banking Registration through ATMs
- White Label ATMs
- Payment banks Questions and Answers
- Eligibility Norms for selection of Statutory Auditors in Public Banks from year 2016-17 and onwards
- Guidance Note on Companies Auditor’s Report Order 2016
- Banks to adopt Indian Accounting Standards w.e.f 01.4.2018 : RBI
- Format for CA’s for the Limited Review Report (for Banks)