Board of Internal Audit and Management Accounting
Skip to content

Press Release

Press Release of Technical Guide on Risk-based Internal Audit in Banks

The Institute of Chartered Accountants of India today organised a closed function to release a publication, “Technical Guide on Risk-based Internal Audit in Banks” under the aegis of its Committee on Internal Audit. The book was formally released by Shri K V Kamath, CEO and MD, ICICI Bank Limited.
Reserve Bank of India had in August 2001 for the first time, introduced the concept of risk-based supervision of banks by way of a discussion paper. The discussion paper was issued to all scheduled commercial banks except regional rural banks and was made a subject matter of debate by the board of directors of all banks. Following that, in December 2002, the Reserve Bank issued a circular to all scheduled commercial banks, introducing the system of risk based internal audit in those banks and urging them to make adequate preparation for successful implementation of the system.
With a view to equip the members in appropriately understanding the concept of risk based internal audit in banks and discharging their duties as internal auditors, the Committee on Internal Audit has brought out this Technical Guide. The Technical Guide deals with the significant aspects of risk-based internal audit in a simple and lucid manner. The Guide is divided in to four chapters. Chapter 1, Introduction, explains the concept of internal audit, need for internal audit in banks, the concept of risk based internal audit in banks, the cost-benefit analysis of internal audit, key audit decisions of a risk based internal audit, advantages of risk based internal audit and the distinction between risk based internal audit and risk management function. Chapter 2, discusses in details, the steps involved, in risk based internal audit in banks, for example, preparation, identification of auditable units, conducting risk assessment, preparation of risk based internal audit plan, identification of auditable units, preparation of risk matrix, key factors relevant for risk assessment, identification of inherent business risks. Chapter 3 deals with other related considerations such as functional independence, communication, performance evaluation, relationship with the external auditor. The last Chapter deals with the way forward. In addition, the appendices to the Technical Guide contain the relevant circulars of the RBI on the subject.