As with many CUs, we require employees to take a consecutive 5-day vacaction at least once each calendar year as a control against fraud. I have had many managers ask me recently if there are any specific things they should be looking for while the employee is out on vacation. Do your CUs have any policies or procedures around this (such as cash drawer audits, loan audits, desk audits, etc.)?
As many of you are I am currently working on my audit plan for next year. If any of you would be willing to send me a copy of your risk assessment or internal audit plan for this year or next year so I can get new ideas please send it to c.heffernan@summitcu.com.
Carol Heffernan
Summit Credit Union
Greensboro, North Carolina
Our branches have coin machines that member's use to deposit coin directly into their account. Do these machines require the NCUA Insurance sign?
I'm wondering how others handle individual information security breaches. I am only referring to breaches that are done by staff accidentally where only one or two members information was breached. For example, if a loan processor accidentally sends out loan documents containing confidential information to another member. Do you have a policy or procedure regarding disciplinary action and what is expected as to the managers response? Any feedback would be appreciated.
I am looking for examples of internal audit staff member, ie. internal audit associate, internal audit assistant, internal audit clerk, etc.
Thanks,
Dale Beard
Does anyone have off-duty Security officers at your credit union on a regular basis?
Our credit union has security officers every Friday and Saturday.
Thanks.
Lynda Eveslage
Park Community Federal Credit Union
(502) 815-1109
Does your credit union conduct closed account reviews or send out confirmation letters?
If you send out letters, do you exclude any of the following situations:
· Accounts closed by the system due to inactivity fees vs. an employee closing them
I am looking for recommendations for Auditing Software.
Branch Operations
IT Vulnerabilities should just be IT - don't make forum topics to narrow.
Regulatory Compliance
Instead of Tactics to Combat Fraud the Forum topic should just be Fraud
I'm wonding if others charge for posting payroll payments. I'm specifically looking at payrolls that are somewhat of a manual process where the business mails or drops off a check for payroll and also includes a list of employees and the amounts that go to each employee.
Hi,
My CEO asked that I poll other credit unions our size for number of employees. We are trying to justify an increase in employees.
Those of you in the $200-$500 million in assets with about 7 branches, could you please respond with:
Asset size
Number of branches
Number of FTEs in total, FTE's in branches, Accounting, Call Center, Audit, and Compliance/Risk Management. If Audit and compliance are one deparment, please indicate that and the number of employees.
I'm wondering if anyone has a mortgage lending procedures manual that you are willing to share. I'm looking for anything that involves the mortgage process and monitoring. It doesn't matter what systems you are using. Our mortgage department is just looking for some guidance as they begin creating one for our CU. Thank you in advance for anything you are willing to share. If you prefer you can e-mail me directly at khodgkin@covantagecu.org
Thank you!
I have two questions:
1.) Do you actively monitor for ”Red Flags” in regards to potential employee fraud and if so what are they?
2.) If an employee fraud is discovered who is responsible to investigate it?
David Schneider, CA, B. Comm
Sr. Compliance Manager
Affinity Credit Union
david.schneider@affinitycu.ca
ACUIA will be creating Facebook and LinkedIn pages as another avenue for keeping up-to-date on ACUIA events and provide another avenue for Q&A. I am in need of some volunteers who would like to help start discussions, post links to interesting credit union/internal audit related articles, monitor the sites for appropriate postings, etc.
It would be great to have one person from each Region so that we can keep the pages up-to-date with events going on throughout the organization.
Hello,
Hi all,
how many of you risk rate your audits? if you do, what is your criteria? do you use a formula as a rating tool? any help would be appreciated. I think this info was available in the list serve but as that resource is not available I need to ask again. thanks,
Larae Jensen, Internal Auditor
Salal Credit Union
laraejen@salalcu.org
I am wondering what everyone's standards are for their cash drawers?
1. What is the maximum dollar amount you allow in the drawer? (If you are willing to share?)
2. Do you enforce a standardization of the cash drawers or are the tellers allowed to arrange and bundle the money the way they feel comfortable? i.e. do you allow paperclips, rubberbands, or different bundle sizes for the same currency?
3. And finally, are your tellers allowed to have things in their drawer that isn't money, like gum, passbooks, tic tacs, etc?
We currently do not offer HAS’s but have been asked by one of our larger business members to begin doing so by January 1st. Therefore, I have been asked to pose the following questions to the group. Any help would be much appreciated! We’ve got a short turn around time if we’re going to make this happen!
Is anyone willing to share how their Health Savings Accounts (HSAs) are set up?
A quick poll today – any responses would be apprecicated……….especially from the $70-$100 million asset size group.
Where, within the credit union to you rank as an internal auditor?? Where are you in the organizational chart??
Do you review Kite reports from your system?
What parameters (dollar amount, number of daily / weekly transactions) are set for your reports, to avoid unnessecary account listings on the reports?
We are in the process of converting our core processing system from Harland’s Ultradata System to their PhoenixEFE System. We are on target for a conversion date of 10/31/10. Does anyone have a sample audit program that they would be willing to share for pre and/or post implementation of a core system software conversion? We want to make sure we complete proper due diligence testing before and after conversion.
I am wondering if anyone knows what the record retention is for auidt work papers? I know audits are permanent and audit committee minutes are permanent, but can not find, or I am not looking hard enough for the audit work papers. Any help would be great. I tried creating a new topic but it is posting this in the Regional Meeting section......I am not quite sure how to use the Forum very well yet.
Thanks,
Christina
