Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 FACTA ID Theft Programs Auditing for Compliance Steven Nyren, CRCM Sheshunoff Consulting & Solutions BCAC Program – September 2008.

Published byOwen Nicholson Modified over 9 years ago

Similar presentations

Presentation on theme: "1 FACTA ID Theft Programs Auditing for Compliance Steven Nyren, CRCM Sheshunoff Consulting & Solutions BCAC Program – September 2008."— Presentation transcript:

1 1 FACTA ID Theft Programs Auditing for Compliance Steven Nyren, CRCM Sheshunoff Consulting & Solutions BCAC Program – September 2008

2 2 ID Theft “Obviously crime pays, or there’d be no crime” - G. Gordon Libby

3 3 The Challenge: Each institution must develop and implement a program to: –detect –prevent, and –mitigate identity theft

4 4 IDENTITY THEFT PROGRAMS THE $100,000 QUESTION: How do we know we’ve accomplished our goal?

5 5 IDENTITY THEFT PROGRAM Ways to validate your program: Monitoring Audit

6 6 Monitoring Use of Periodic Reviews: –Monitoring Checklists, where applicable –Testing to confirm compliance –Performed by line unit and/or compliance professional –Object is to identify and resolve issues before an audit or exam

7 7 Validating the Program Auditing –More detailed scope and less frequent than monitoring –Independent perspective –May be conducted by Internal auditor and/or outside auditor or other qualified third party

8 8 Auditing for Compliance Process Documentation Risk Assessment Controls Response Program Training Administration

9 9 RED FLAG CHECK UP Are you ready for the examiners? Is the Program fully documented? Does it make sense? Does practice match policy? Is it effective?

10 10 Risk Assessment Does it consider? Methods of opening Covered Accounts Methods of accessing Covered Accounts The Bank’s history with identity theft Current fraud controls Inherent and residual risks The Bank’s overall ID Theft risk

11 11 Controls Are controls adequately documented? Are all applicable red flags addressed? Are they working as intended?

12 12 Response Program Is the method of documenting response actions to red flag incidents adequate? What is management’s oversight method – centralized; department level? Are the responses adequate?

13 13 Training Was it comprehensive? Has it been documented? Has it been completed?

14 14 Resources Regulatory Guidance Industry Websites (Bankersonline.com, ABA.com, etc.) Seminars and webinars

15 15 Can It All Be Done? “Energy and persistence conquer all things.” - Benjamin Franklin

16 16 Conclusion Questions?

Download ppt "1 FACTA ID Theft Programs Auditing for Compliance Steven Nyren, CRCM Sheshunoff Consulting & Solutions BCAC Program – September 2008."

Similar presentations

North Carolina Office of the State Auditor Honesty Integrity Professionalism.

North Carolina Office of the State Auditor Honesty Integrity Professionalism.
. . . a step-by-step guide to world-class internal auditing

. . . a step-by-step guide to world-class internal auditing
Red Flags Compliance BANKERS ADVISORY 1 Red Flags Compliance Fair & Accurate Credit Transactions Act (FACTA) Identity Theft Prevention.

Red Flags Compliance BANKERS ADVISORY 1 Red Flags Compliance Fair & Accurate Credit Transactions Act (FACTA) Identity Theft Prevention.
Red Flags Rule BAS Forum August 18, 2010. What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
Www.theiia.org Continuous Auditing Global Technology Auditing Guide 3 Twelfth Continuous Auditing and Reporting Symposium Rutgers Business School November.

Continuous Auditing Global Technology Auditing Guide 3 Twelfth Continuous Auditing and Reporting Symposium Rutgers Business School November.
Information System Assurance Practices in China Key players doing IS Assurance In China Regulatory Regime and Professional Organizations -Regulatory AuthoritiesRegulatory.

Information System Assurance Practices in China Key players doing IS Assurance In China Regulatory Regime and Professional Organizations -Regulatory AuthoritiesRegulatory.
Internal Audit Awareness

Internal Audit Awareness
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.
Are You Ready? Identity fraud and identity management are quickly becoming critical operational concerns for the financial industry. The Red Flags Guidelines.

Are You Ready? Identity fraud and identity management are quickly becoming critical operational concerns for the financial industry. The Red Flags Guidelines.
Identity Theft “Red Flags” Rules Under the FACT Act Reid Fudge CISSP, CISA Pulte Mortgage, LLC November 2008.

Identity Theft “Red Flags” Rules Under the FACT Act Reid Fudge CISSP, CISA Pulte Mortgage, LLC November 2008.
11 - 1 ©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder Fraud Auditing Chapter 11.

©2006 Prentice Hall Business Publishing, Auditing 11/e, Arens/Beasley/Elder Fraud Auditing Chapter 11.
Institute of Municipal Finance Officers & Related Professions

Institute of Municipal Finance Officers & Related Professions
Purpose of the Standards

Purpose of the Standards
State Examinations Have No Fear, Help is Here. Risk-Focused Financial Condition Exams NAIC mandated for state insurance departments beginning 1/1/2010.

State Examinations Have No Fear, Help is Here. Risk-Focused Financial Condition Exams NAIC mandated for state insurance departments beginning 1/1/2010.
Best Practices for User Access Controls and Segregation of Duties Presented by: Jeffrey T. Hare, CPA CISA CIA ERP Seminars.

Best Practices for User Access Controls and Segregation of Duties Presented by: Jeffrey T. Hare, CPA CISA CIA ERP Seminars.
Internal Auditing and Outsourcing

Internal Auditing and Outsourcing
Compliance System Validation - An Audit Based Approach December 2012 Uday Gulvadi, CPA, CIA, CISA, CAMS Director - Internal Audit, Risk and Compliance.

Compliance System Validation - An Audit Based Approach December 2012 Uday Gulvadi, CPA, CIA, CISA, CAMS Director - Internal Audit, Risk and Compliance.
Performance Audit Fraud management in local government Report 19: 2014-15 David Toma Manager 24 July 2015.

Performance Audit Fraud management in local government Report 19: David Toma Manager 24 July 2015.
1.  The views expressed are those of the speaker and do not necessarily reflect the views of the Federal Reserve Board of Governors, or the Federal Reserve.

1.  The views expressed are those of the speaker and do not necessarily reflect the views of the Federal Reserve Board of Governors, or the Federal Reserve.
Regulatory Requirements & Compliance: Ensuring Effective Outcomes Presented By: John E. Palmer, CPA Managing Director/Principal.

Regulatory Requirements & Compliance: Ensuring Effective Outcomes Presented By: John E. Palmer, CPA Managing Director/Principal.

Similar presentations

Ads by Google