IIA Australia White Paper Engagement Risk Assessment 1720630977
IIA Australia White Paper Engagement Risk Assessment 1720630977
IIA Australia White Paper Engagement Risk Assessment 1720630977
White Paper
Engagement Risk
Assessment for
AML/CTF Program
Audit
2024
This resource was prepared after the ‘Global Internal Audit Standards’ were published in 2024
Level 5, 580 George Street, Sydney NSW 2000 | PO Box A2311, Sydney South NSW 1235
T +61 2 9267 9155 F +61 2 9264 9240 E [email protected] www.iia.org.au
› Adequacy and effectiveness of AML/CTF training › Identifying the potentially significant risks to
program for employees. the objectives of the activity under review.
› Compliance officer seniority and authority. › Considering specific risks related to fraud.
Gathering reliable, relevant and sufficient information Austrac, 2024a. Independent reviews. [Online]
while performing engagement risk assessment by the Available at: https://www.austrac.gov.au/business/core-
internal audit function is a key enabler in developing the guidance/amlctf-programs/independent-reviews
appropriate engagement objectives and scope. There are Austrac, 2024b. Money laundering/terrorism financing risk
other components of the AML/CTF Program to consider assessment. [Online]
such as employee due diligence and training, and Available at: https://www.austrac.gov.au/business/core-
customer due diligence. guidance/amlctf-programs/money-launderingterrorism-
When planning an audit on components of the AML/CTF financing-risk-assessment
Program, it is important to consider when the previous Austrac, 2024c. Reporting. [Online]
independent review on that component was performed Available at: https://www.austrac.gov.au/business/core-
and determine if there are any material changes post- guidance/reporting
previous review which may warrant another audit.
Austrac, 2024d. Transaction monitoring. [Online]
There is no ‘one-size fits all’ approach in choosing the Available at: https://www.austrac.gov.au/business/core-
components of AML/CTF Program for each independent guidance/amlctf-programs/transaction-monitoring
review. A combination of the organisation’s current high-
Cox, A., 2020. White paper: Internal Audit independence
risk areas and overall regulatory environment should
arrangements. [Online]
be considered. The overarching objective should be to
Available at: https://iia.org.au/technical-resources/
gather meaningful information as part of the engagement
white-paper/white-paper-internal-audit-independence-
risk assessment so that it helps to effectively perform the
arrangements
internal audit engagement.
International Internal Auditing Standards Board, 2016.
International Standards for the Professional Practice of
Internal Auditing. [Online]
Available at: https://www.theiia.org/en/standards/what-are-
the-standards/mandatory-guidance/standards/
Disclaimer
Whilst the Institute of Internal Auditors – Australia has
attempted to ensure the information in this White Paper is
as accurate as possible, the information is for personal and
educational use only, and is provided in good faith without
any express or implied warranty. There is no guarantee
given to the accuracy or currency of information contained
in this White Paper. The Institute of Internal Auditors –
Australia does not accept responsibility for any loss or
damage occasioned by use of the information contained in
this White Paper.