Audit Services

NBA IA

NETBankAudit follows FFIEC guidelines for outsourcing internal audit functions. We believe that audit and assessment services should provide “value added” management and operational solutions and guidance beyond simply checking off a regulatory or best practice requirement.

All audits are risk-based and tailored to your specific institution to obtain maximum efficiency and value.  Our unique approach combines risk-based audit planning with the bundling of services to allow management and the Audit Committee top-shelf solutions at affordable prices.

The following internal auditing services can be offered as bundled outsourced services, individual outsourced services or as supplemental services to existing internal audit programs:

Information Technology (IT) Audit(s)

As with all of our audit services, the components of our IT Audit Suite can be delivered bundled or as individual supplements to your existing internal audit program (rent an expert).

  • General Controls – includes:
    • IT Governance
    • IT Management
    • IT Operations
    • IT Security
  • IT SOX Controls
  • Information Security/GLBA
  • Core Processing System
    • Mainframe/Midrange
    • Application
  • Networking Technology
    • General Network Administration, Operations, and Security
    • Server, Router, Switch Configuration
    • Infrastructure and Virtualization
    • Cloud Computing
    • Active Directory

    Within these areas, evaluations are structured based on operational criticality and security risks. Specifically, the audit encompasses the following systems and/or applications:

  • Core data processing (mainframe computer, application software, and related services)
  • Network (internal/external connectivity and related hardware, software, and related services including virtualization, cloud, etc.)
  • Item processing/proof (hardware, software, and services related to item capture, processing, and reconcilement/balancing)
  • Internet banking (hardware, software, and services facilitating customer access to account information)
  • Mobile banking (hardware, software, and services facilitating customer access to account information)
  • Telephone banking (hardware, software, and services facilitating customer access to account information)
  • ATM, debit, and credit cards (hardware, software, and services facilitating customer access to account information)
  • Wire transfer and ACH (hardware, software, and services facilitating customer access to account information)
  • Web based applications (various web-based systems facilitating bank employee access to human resources, accounting, lending, and marketing functions)

Operational Audits

  • Loan Operations & Administration
  • Deposit Operations & Administration
  • Branch Administration
  • Internet Banking
  • Wire Transfer
  • ACH (NACHA)
  • Item Processing including Branch Capture, Remote Deposit Capture, and Mobile Capture
  • IRR, Liquidity (ALM)

Consumer Compliance Audits

  • Loan Compliance
  • Fair Lending & HMDA
  • Deposit Compliance
  • Privacy & Consumer Protection
  • CRA

BSA/AML Audits

  • BSA/AML Compliance Audit
  • BSA MIS Verification
  • BSA Filter Optimization Review