
NETBankAudit follows FFIEC guidelines for outsourcing internal audit functions. We believe that audit and assessment services should provide “value added” management and operational solutions and guidance beyond simply checking off a regulatory or best practice requirement.
All audits are risk-based and tailored to your specific institution to obtain maximum efficiency and value. Our unique approach combines risk-based audit planning with the bundling of services to allow management and the Audit Committee top-shelf solutions at affordable prices.
The following internal auditing services can be offered as bundled outsourced services, individual outsourced services or as supplemental services to existing internal audit programs:
Information Technology (IT) Audit(s)
- General Controls – includes:
- IT Governance
- IT Management
- IT Operations
- IT Security
- IT SOX Controls
- Information Security/GLBA
- Core Processing System
- Mainframe/Midrange
- Application
- Networking Technology
- General Network Administration, Operations, and Security
- Server, Router, Switch Configuration
- Infrastructure and Virtualization
- Cloud Computing
- Active Directory
Within these areas, evaluations are structured based on operational criticality and security risks. Specifically, the audit encompasses the following systems and/or applications:
- Core data processing (mainframe computer, application software, and related services)
- Network (internal/external connectivity and related hardware, software, and related services including virtualization, cloud, etc.)
- Item processing/proof (hardware, software, and services related to item capture, processing, and reconcilement/balancing)
- Internet banking (hardware, software, and services facilitating customer access to account information)
- Mobile banking (hardware, software, and services facilitating customer access to account information)
- Telephone banking (hardware, software, and services facilitating customer access to account information)
- ATM, debit, and credit cards (hardware, software, and services facilitating customer access to account information)
- Wire transfer and ACH (hardware, software, and services facilitating customer access to account information)
- Web based applications (various web-based systems facilitating bank employee access to human resources, accounting, lending, and marketing functions)
Operational Audits
- Loan Operations & Administration
- Deposit Operations & Administration
- Branch Administration
- Internet Banking
- Wire Transfer
- ACH (NACHA)
- Item Processing including Branch Capture, Remote Deposit Capture, and Mobile Capture
- IRR, Liquidity (ALM)
Consumer Compliance Audits
- Loan Compliance
- Fair Lending & HMDA
- Deposit Compliance
- Privacy & Consumer Protection
- CRA
BSA/AML Audits
- BSA/AML Compliance Audit
- BSA MIS Verification
- BSA Filter Optimization Review