Professional Documents
Culture Documents
SUBMITTED BY
PREKSHA .D.FURIA
SUBMITTED TO
UNIVERSITY OF MUMBAI
RAJASTHANI SAMMELAN’S
GHANSHYAMDAS SARAF GIRLS’S COLLEGE,
AFFILLIATED TO UNIVERSITY OF MUMBAI
ACCREDITED BY NAAC WITH ‘A’ GRADE
AND
DURGADEVI SARAF JUNIOR COLLEGE
{ARTS & COMMERCE}
S.V ROAD MALAD {W}, MUMBAI-400064
YEAR 2010-2011
DECLARATION
Date
Signature of Student
RAJASTHANI SAMMELAN’S
GHANSHYAMDAS SARAF GIRLS’S COLLEGE,
AFFILLIATED TO UNIVERSITY OF MUMBAI
ACCREDITED BY NAAC WITH ‘A’ GRADE
AND
DURGADEVI SARAF JUNIOR COLLEGE
{ARTS & COMMERCE}
S.V ROAD MALAD {W}, MUMBAI-400064.
CERTIFICATE
External examiner
Date
Project coordinator
Date
Principal
College seal
ACKNOWLEDGEMENT
Date
Signature of student
Executive summary
The objective of this study is to determine the impact of internal control, on the
overall management of Nigerian banks. Also, to examine the effect of the internal
control systems, when it comes to fraud prevention and detection. Summarily, the
specific objectives are: to highlight the major causes of fraud and actors that
contribute to the incidence of frauds in banks. To determine the problem of fraud
and how to curb it, by. To make recommendation based on the findings?
From these definitions, it can be deduced that internal control comprises the plan
of an organization and all of the coordinate methods and measures adopted within
it, to safeguard its assets, check the accuracy and reliability of its accounting data,
promote operational efficiency and encourage adherence to prescribed managerial
policies. Internal control objectives are channeled towards ensuring adherence to
managerial policies and achieving organizational goals in general.
“You and I ... are convinced of the fact that if our Government in
Washington and in a majority of the States should revert to the control
of those who frankly put property ahead of human beings instead of
working for human beings under a system of government which
recognizes property, the nation as a whole would again be in a bad
situation.”
1. Introduction
The need for the internal control systems in the organizations, especially banks,
cannot be undermined, due to the fact that the banking sector, which has a crucial
role to play in the economic development of a nation is now being characterized by
macro economic instability, slow growth in real economic activities, corruption
and the risk of fraud.
Fraud, which is the major reason for setting up on internal control system, has
become a great pain in the neck of many Nigerian bank managers. It has also
become an unfortunate staple in Nigeria’s international reputation. Fraud is really
eating deep into the Nigerian banking system and that any bank with a weak
internal control system, is dangerously exposed to bank fraud.
The CBN reported that cases of attempted fraud and forgery in banks, as at half-
year 2007 have surpassed what was recorded for the whole year 2006. The CBN
half-year report for 2007, revealed a total of 741 cases of attempted fraud and
forgery, involving 5.4 billioninvolving 4.6 billion, $1.8 million and 14,389.7
pound sterling. The CBN also reported that the backward development was
attributable to weaknesses in the internal control systems of the banks. This has
clearly pointed the picture of how fraud has penetrated in the financial strength of
Nigerian Banks.
In a nut-shell, the damage which this menace, called fraud has done to the banks is
innumerable and needs urgent attention. Therefore, the attempt to put an end to this
economic degradation, gave rise to the topic of this research study the impact of
internal control in the banking sector with Wema Bank of Nigeria PLC as a case
study. However, this study is aimed at verifying the conception that an effective
and efficient internal control system is the best control measure for preventing and
detecting fraud, especially in the banking sector.
The questions are: what can be said to be the cause or causes of the increasing rate
of fraud in banks? What are the effects or damage has fraud caused banks, her
customers? What is the impact of internal control in the prevention and detection
of fraud in banks?
DEFINITION
Internal control system: all of the financial, operational and other control
systems which are carried out by internal controllers and which involve
monitoring, independent evaluation and timely reporting to management levels
systematically in order to ensure that all the bank activities are performed by
management levels in accordance with current policies, methods, instructions and
limits;
There are two common types of controllers, with many variations and
combinations: logic controls, and feedback or linear controls. There is also fuzzy
logic, which attempts to combine the easy design of logic with the real-world
utility of feedback controls.
SECTION ONE
Purpose, Scope, Legal Basis and Definitions
Purpose, scope and legal basis
INTRODUCTION
Article 1- This regulation aims at determining the principles and procedures
of the internal supervision (control/audit) systems and risk management systems
that the banks shall establish in order to monitor and control the risks they are
exposed to.
The term “bank” used in this regulation refers to establishments defined in the
Banks Act No. 4389 and the ones established under the name of “bank” in Turkey,
branches of banks (established) abroad as well as special finance houses.
This regulation has been issued according to Article 9, Paragraph 4 of the
Banks Act No. 4389.
Definitions
Article 2- The terms and expressions used in this regulation shall have the
following meanings:
Board: Banking Regulation and Supervision Board
Agency: Banking Regulation and Supervision Agency
Internal control function: all of the control activities which are performed
under the governance and organizational structure established by the bank’s board
of directors and senior management and in which each individual within the
organization must participate in order to ensure proper, efficient and effective
performing of the bank’s activities in accordance with the management strategy
and policies, and applicable laws and regulations and to ensure the integrity and
reliability of accounting system and timeliness and accessibility of information in
the data system,
Internal control system: all of the financial,
operational and other control systems which are carried
out by internal controllers and which involve monitoring,
independent evaluation and timely reporting to
management levels systematically in order to ensure that
all the bank activities are performed by management
levels in accordance with current policies, methods,
instructions and limits;
documents and tools, report their findings or prepare and communicate warning
reviewed or controlled, to seek their opinion and where they consider necessary
they shall warn audit (inspection) unit, risk management unit and all management
of the bank. or to seek their advice and, if necessary, to warn the inspection board,
the risk management group and all management levels of the bank.
SECTION THREE
Audit System
Audit system
Article 26- The audit function covers the bank's all activities and units. The
functioning of the internal control system shall be examined by bank’s auditors.
Examination or audit reports shall be directly submitted to the bank's board of
directors or the senior management depending on their importance and priority.
Responsibilities, authority and duties of the audit (inspection) unit,
auditors and assistant auditors and their activities associated therewith, and the
targets and scope of the audit function; and the role of the audit (inspection) unit
within the bank shall be laid down in the regulation on audit (inspection) unit put
The need for the internal control systems in the organizations, especially banks,
cannot be undermined, due to the fact that the banking sector, which has a crucial
role to play in the economic development of a nation is now being characterized by
macro economic instability, slow growth in real economic activities, corruption
and the risk of fraud.
Fraud, which is the major reason for setting up on internal control system, has
become a great pain in the neck of many Nigerian bank managers. It has also
become an unfortunate staple in Nigeria’s international reputation. Fraud is really
eating deep into the Nigerian banking system and that any bank with a weak
internal control system, is dangerously exposed to bank fraud.
The CBN reported that cases of attempted fraud and forgery in banks, as at half-
year 2007 have surpassed what was recorded for the whole year 2006. The CBN
half-year report for 2007, revealed a total of 741 cases of attempted fraud and
forgery, involving 5.4 billion, $35,406.1, 150 Euros were reported as at June, 2007.
In 2006, 1,193 cases were reported involving 4.6 billion, $1.8 million and
14,389.7 pound sterling. The CBN also reported that the backward development
was attributable to weaknesses in the internal control systems of the banks. This
has clearly pointed the picture of how fraud has penetrated in the financial strength
of Nigerian Banks.
In a nut-shell, the damage which this menace, called fraud has done to the banks is
innumerable and needs urgent attention. Therefore, the attempt to put an end to this
economic degradation, gave rise to the topic of this research study the impact of
internal control in the banking sector with Wema Bank of Nigeria PLC as a case
study. However, this study is aimed at verifying the conception that an effective
and efficient internal control system is the best control measure for preventing and
detecting fraud, especially in the banking sector.
The questions are: what can be said to be the cause or causes of the increasing rate
of fraud in banks? What are the effects or damage has fraud caused banks, her
customers? What is the impact of internal control in the prevention and detection
of fraud in banks?
Objectives of the study: The objective of this study is to determine the impact of
internal control, on the overall management of Nigerian banks. Also, to examine
the effect of the internal control systems, when it comes to fraud prevention and
detection. Summarily, the specific objectives are: to highlight the major causes of
fraud and actors that contribute to the incidence of frauds in banks. To determine
the problem of fraud and how to curb it, by. To make recommendation based on
the findings?
Scope of the study: The content of this research, should not be seen as being
totally exhaustive of all possibly situations available in the Nigerian Banking
sector on the theme of this study. This is due to the vast size of the banking sector
and the boundless nature of the study under review. Therefore, the scope of this
research is limited to the study carried out on Wema Bank branches in the South-
Western part of Nigeria, particularly 50 selected branches. In the following states;
Ekiti, Ondo, Oyo, Ogun, Osun and Lagos.
TYPES OF CONTROL SYSTEM
Preventive controls: These are controls that predict potential problems before they
occur and make adjustments. They also prevent an error, omission or malicious act
from occurring. Examples of preventive controls includes: Using well-designed
documents to prevent errors. Establishing suitable procedures for authorization of
transactions. Employ only qualified personnel
Detective controls: These controls are designed to detect and report the occurrence
of an omission, an error or a malicious act. Examples of detective controls
includes: duplicate checking of calculations. Periodic performance reporting with
variance error message over tape labels. Hash totals counter cheques post-due
account reports.
The technical development sustained in the banking industry on the one hand, and
development in the use of electronic means of electronic funds on the other, led to
an increase in banking services provided by banks and diversity, increasing the
complexity of banking operations in a market characterized by fierce competition.
To meet this development and the risks associated with it has become necessary to
control the level of risk that takes work and control procedures necessary to control
the adverse effects of such risks and manage them properly.
The accreditation by the banks entirely on the internal control mechanism and
function of auditing for risk management operation, it is not enough now, it
appeared the urgent need to build tools and special operations aimed at operational
risk management (operations), banks have begun to set up special programs for the
management of operational risks can provide Security and safety of the bank.
It could be argued that knowledge of the risks and evaluation and management are
key factors in the success and prosperity of banks and achieve its objectives, if
engage in risk intended to obtain higher profits but not to manage these risks
properly scientific way may lead to the loss of revenue and the failure to achieve
the strategic objectives of the Bank, Therefore, proper understanding of risk
management, banking, self-assessment of risk and control procedures required to
answer many questions about:
- Credit risk
It is important to recognize that any first-risk lending to certain risks vary
according to each process, and then the lender bank must try everything possible
prevent these hazards from becoming a reality because it will not do anything to
achieve the return, These risks may lead to the loss of money lenders also, so the
risk is the bank lender grants a loan to individuals. Vimay to analyze the borrower's
ability to pay, hence must be a premium payment (monthly, quarter, half the
annual, annual), as well as profits to be achieved by the bank burden possible
eventuality does not lead to the disruption of the balance of receipts and future
payments the borrower. Often, the bank asked the customer to ensure that the bank
could be used if the borrower's inability to pay.
The granting of loans to individual borrowers, or borrowers associated with the
bank through ownership if not under the control of sound may lead to the creation
of many of the problems; to determine the eligibility of the borrower is not an
objective such as the granting of advances to shareholders, the parent company and
its subsidiaries and executives, in such cases, The granting of loans based on bias,
leading to the risk of losses caused by these loans.
- Liquidity risk
These are risks in the bank's inability to pay its financial obligations as they fall
due, the bank can not meet its short-term phenomenon of the beginning of a deficit
which, if continued could lead to bankruptcy, liquidity risk may be significant to
the specialized banks in the activities of electronic money if Able to assure the
adequacy of funds to cover the payment at any given time, as well as it could lead
to risk reputation and the impact on profitability, this can be measured bank
liquidity through a variety of means.
- Reputation risk
At the root of the risks of failure in the proper functioning of the bank not in line
with regulations and laws so, an important factor and reputation of the bank, as the
nature of the activities performed by banks rely on the good reputation among
depositors and customers.
- Forgery
The transaction losses resulting from fraud is fraud or forgery of bank checks
negotiable securities such as letters of credit or fraud agencies legitimate result of
the inability of staff in banks to ensure adequate health of the documents provided
to customers before the start of their payment.
One study suggests that the losses resulting from fraud between 10% to 18% in
banks; view of the increasing use of technology in banking operations, which led
to the development of opportunities for criminal acts, which have developed
methods and increased the difficulty of detection by high-tech means.
- Counterfeiting currency
The evolution of technology in most cases helped to increase the counterfeiting of
currencies, where the United States of America estimated the volume of counterfeit
currency, the dollar at U.S. $ 20,50,100 category are traded outside the United
States of America, and no expert in this field detection.
- Theft, burglary
The increased use of safety security standards at banks has reduced the cases of
theft and robbery. The increasing cases of theft and robbery with a growing
incidence of crimes of drug abuse, drug trafficking, which are not widespread,
largely in the Arab countries unlike other countries.
- Cybercrime
These crimes of the most common crimes are the following key areas:
- ATM.
- Credit cards.
- Points of sale.
- Internal fraud through the collusion of staff.
- Exchange data automatically.
- External fraud.
Retail operations mechanism
Banks is currently expanding its services in this aspect of operations, which
include the payment of telephone bills, electricity, water and other infrastructure to
lead to an increase in risk presented, but the improvement of security measures
with the introduction of special means an impact in reducing them to the maximum
extent possible.
- Occupational Hazards
Banks generally a lack of allocation of services and financial products as the
prevalent forms of operational risk in the banking sector, and the underlying
malpractice and neglect and risks associated with legal liability, which must
differentiate between occupational hazards affecting the Governing Council on the
impact on those of the bank note that the commitments Arise from various sources
including:
- Claims shareholders.
- Services provided to customers.
- Practices of bank employees.
- Environmental obligations.
- Claims obligations borrowers.
FRAUDS
The concept of fraud: What is fraud? Fraud has been widely defined in literature
by scholars and experts. Hornby (1998) defines Fraud as an action or an instance of
checking somebody in order to make money or obtain goods illegally. The same
dictionary defines the perpetrators of frauds as fraudsters.
According to the ICAN study Pack (2006a, b) Fraud consists of both the use of
deception to obtain an unjust or illegal financial advantage and intentional
misrepresentations, affecting the financial statements by the one or more
individuals among management, employees, or third parties.
Classification of fraud:
Within the scope of this study, attempts shall be made to critically examine the
two broad schemes of frauds. Fraud is classified into two and are:
• Management fraud
• Employee fraud
• Management fraud
Employee fraud: Also known as non-management fraud: These are frauds that are
perpetrated by the employees of an organization. Robertson (1996) defines it as the
use of fraudulent means to take money or other property from an employer. It
usually involves falsification of some kind, like false documents, lying, exceeding
authority, or violating an employer’s policies, embezzlement of company’s funds,
usually in form of cash or other assets. It consists of three phases, which are:
• The cover up
Employee frauds are more likely to be encountered where internal controls are
weak: other types of employees frauds according to Awe (2005) are as follows:
• Alteration of invoices
• Missing returned cheques (so that it appears that bills are paid
• Missing involves
• Poverty and the widening gap between the rich and the poor
• Job insecurity
• Societal expectations
• Revenge
• Where transactions occurring during the year are reversed after the year
end
• where fees paid to legal advisers appear to be out of proportion with the
actual services rendered
• Where there are material transactions during and around the year end
date
Bad name: According to the BBC News on Nigerian bank frauds (2007)
Nigeria has become synonymous with fraud as some of its citizens use
the boom in the internet cafes to send Spam mails, promising millions in
exchange for the gullible recipient’s bank details. This has proved to us
that fraud has become on unfortunate staple in Nigeria’s international
reputation, thus, giving us a bad name.
From the above effects, it can be clearly seen that fraud is really a
destructive force on a mission to spoil the name of financial institutions,
render so many employers of labour jobless, close down banks and erase
the confidence of the people in the country’s banks. This should not be
permitted hence efficient internal control systems must be fully effected.
CONCLUSION
RECOMMENDATIONS
PART THREE
Risk Management System
Risk management process
Article 29- The risk management process consists of the stages of
defining and measuring the risks; establishing the risk policies and
implementation procedures and their implementation; and the analysis,
review, reporting, research, recognition and assessment of risks within
the framework of the basis set by the bank senior management and the
risk management group together and approved by the board of directors.
Legal risk: The possibility of the situation where the obligations are
higher or rights are lower than assumed due to operations based on
insufficient or incorrect legal knowledge and documents.
Reputation risk: The risk of loss due to bank’s diminished
creditworthiness and impaired reputation resulting from failures in
business practices or to comply with current laws and regulations.
Regulatory risk: The risk of loss arising from violations and non-
conformance with laws and regulations and legal obligations.
Risk measurement
Article 31– During the risk measurement stage, it shall be ensured
that the risks, which the bank is exposed to, is expressed quantitatively
or analytically by using certain measures or criterion
A Risk measurement methodology which is capable of
comparing the different dimensions of risk and setting the risk concept
as a criteria for performance measurements and raising capital shall be
developed in order to consistently assess and manage the risks that the
bank is exposed to.
Within the framework of three different measurement categories the
extent of the risks that the bank can be exposed to are listed below:
a) First measurement category: the expected loss,
b) Second measurement category: the unexpected loss
c) Third measurement category: the estimated loss within the
framework of a stress test scenario.
developing short and long term risk management strategies, and making
structured in such a way that they are applicable and understandable and
structure:
Managing profitability
Article 39- The senior management and the risk management
group shall assess the profit/loss position of the primary operational
units within the bank by taking the risks-revenue trade off into account.
Direct and indirect cost factors shall be taken into account in operational
units. Relationship between profitability and cost shall be monitored by
a special unit within the bank on the basis of client and branch, on a
consolidated basis. An analysis system and a data processing system
shall be established in order to support profitability and cost
management within the bank.
The risk/return trade off and risk-capital relationship shall be
taken into consideration during the allocation of funds to each unit.
Operation and profit plans, market conditions, and risk factors shall be
assessed rationally during the pricing process of lending and deposit
taking activities.
Allocation of sources by the senior management among units shall
be based on regular profit and loss management reporting. While
entering into a new business activity the equilibrium of “risk-capital to
be allocated” shall be taken into account, and risk limits for each
operational unit shall be set in accordance with the allocated capital.
emerged. The plan shall assess the extent to which a potential critical or
Banks shall establish a data backup center or enter into agreements with
other banks or organizations that provide assurance on data backup
applications. Data backups so secured shall be kept in a safe or a remote
center. Use of multiple communication methods shall be guaranteed by
using special lines between the data processing center and branches as
well as between the head office and branches.
A system shall be created to monitor regularly emergency and
contingency plans in appropriate intervals, and regular exercises of the
plans shall be carried out in the head office and branches to test the
system against a potential problem or collapse in the automation system
and other systems. Results of on-site exercises shall be reported to the
senior management after an appropriate assessment and used to revise
the plan.
Product Expertise
The Banks team chooses the right products to deliver the control system
that best meets your application needs.
Engineering Services
Electrical design
• Instrumentation
• Documentation
• Fabrication
• Networking and data communications
• Project management
• Turnkey project implementation
• Staging and simulation
• Startup and commissioning
• Training
• Validation: Equipment, computer and control system qualification
Networking
The Banks team has extensive experience with industrial networks and
can interconnect all devices so that plant data travels seamlessly between
systems.
Abdullah Barakat*
Introduction
By the end of the past century, those who were in charge of global
banking system recognized the
importance of setting up role and new philosophy of capital.
McDonough, (1999) chief of American
central bank said that the increase of pressures on banking systems has
confirmed the need to adopt a
new definition of capital. Board of governors (2005) had identified the
relation of capital with risks and
how to measure the same accurately, the conformity of managerial
practices and the availability of
board of directors capable to draw the polices according to specification
of risks.
To manage risks, the executive management needs periodical
evaluations of followed procedures, its
appropriateness, the availability of managerial authorities, efficient
human resources and management of
fruitful discourse to enhance internal control system capability on
control and measurement. McDonough
(1999) confirmed that control systems had to maintain banking systems
stability through following
appropriate and specified roles that facilitate banking problems solving
and to reduce its accuracy.
Internal control systems may be obliged sometimes to spend long time in
handling some issue, as the
case of financial crisis which some states in South East of Asia had
suffered from. Some times it may
need to spend long time to reduce the accuracy possibility. Basel
committee who is in charge of supervising banks has issued a paper
which includes a frame work to establish internal control system