Information System(IS) Audit for Urban Cooperative Banks

 

In view of the above and having regard to risks emanating from the adoption of technology, there is a need to introduce IS Audit in UCBs. It is, therefore, advised that

1. UCBs may adopt an IS audit policy, if not already done, appropriate to its level of operations, the complexity of business, and level of computerization and review the same at regular intervals in tune with guidelines issued by RBI from time to time.
2. UCBs may also adopt appropriate systems and practices for conducting IS audit on annual basis covering all the critically important branches (in terms of nature and volume of business).
3. Such audits should be undertaken preferably prior to the statutory audit so that IS audit reports are available to the statutory auditors well in time for examination and for incorporating comments, if any, in the audit reports.
4. IS audit reports should be placed before the board and compliance should be ensured within the time frame as outlined in the audit policy.