5.10.2 Audit of banks and non-banking financial institutions

The audit of banks and non-banking financial institutions (NBFIs) involves specific considerations and procedures due to the unique nature of their operations, regulatory requirements, and inherent risks associated with the financial services industry. Here are some key aspects of the audit of banks and NBFIs:

1. Regulatory Compliance:
   • Banks and NBFIs are subject to strict regulatory requirements and supervision by regulatory authorities. The auditor needs to have a comprehensive understanding of these regulations, including banking laws, accounting standards, and industry-specific guidelines.
   • The audit procedures should ensure that the institution is compliant with regulatory requirements, such as capital adequacy, loan provisioning, liquidity, and risk management standards.
2. Risk Assessment:
   • Banks and NBFIs operate in a risk-sensitive environment. The auditor assesses the specific risks associated with the institution’s operations, including credit risk, market risk, liquidity risk, operational risk, and regulatory compliance risk.
   • The risk assessment guides the auditor in determining the nature, timing, and extent of audit procedures to be performed, with a focus on areas of higher risk.
3. Internal Controls:
   • Strong internal controls are critical in the banking and NBFI sector to mitigate risks and safeguard assets. The auditor evaluates the effectiveness of internal controls, including the institution’s risk management framework, governance structure, and internal audit function.
   • The audit procedures include testing the design and operating effectiveness of key controls, assessing the control environment, and identifying control deficiencies or weaknesses.
4. Loan Portfolio Review:
   • Loans and credit portfolios are significant assets for banks and NBFIs. The auditor evaluates the institution’s loan portfolio, including the loan classification, provisioning, collateral valuation, and impairment assessments.
   • The audit procedures may involve selecting and testing a sample of loans, reviewing loan documentation, assessing the adequacy of loan loss provisions, and evaluating the institution’s credit risk management practices.
5. Financial Instruments:
   • Banks and NBFIs often deal with complex financial instruments, such as derivatives, securitization, and structured products. The auditor examines the valuation, accounting treatment, and disclosure of these financial instruments, ensuring compliance with applicable accounting standards.
   • The audit procedures may include assessing the institution’s fair value measurements, reviewing derivative contracts, evaluating hedge accounting practices, and verifying the disclosure of financial instrument risks.
6. Anti-Money Laundering (AML) and Know Your Customer (KYC) Procedures:
   • Banks and NBFIs have a legal and regulatory obligation to implement effective AML and KYC procedures to prevent money laundering and terrorism financing. The auditor reviews the institution’s AML and KYC processes, assessing their adequacy and effectiveness.
   • The audit procedures may involve examining customer due diligence processes, transaction monitoring systems, and compliance with AML regulations.
7. Reporting and Disclosure:
   • The auditor assesses the institution’s financial reporting and disclosure practices, ensuring compliance with accounting standards and regulatory requirements.
   • The audit procedures include reviewing the financial statements, assessing the adequacy of disclosures related to financial instruments, loan portfolios, regulatory compliance, and significant accounting policies.