• 15 Marks

AAA – May 2023 – L3 – Q7 – Forensic Auditing

Discuss ethical principles for fraud investigation, advise on evidence gathering procedures, and recommend laws and agencies for legal action.

At the annual general meeting of Aggressive Bank Limited for the year 2020, shareholders raised concerns over increasing cases of customer complaints about fraud. Shareholders emphasized that drastic actions were required to avoid brand damage and reputational issues.

In performing their oversight functions, the audit committee commissioned the internal audit unit to investigate fraud issues and likely causes. The internal audit report highlighted the following issues:

  1. Hacking of Accounts: Unauthorized transfers due to poor information security systems.
  2. Forgery: Forged cheques, signatures, and withdrawal slips used in collusion with bank staff.
  3. Fictitious Accounts: Opening and operating fake accounts to facilitate illegal transfers due to incomplete KYC.
  4. Loans to Fictitious Borrowers: Fictitious loans issued via fake accounts.
  5. False Overtime Claims: Junior staff claiming overtime for hours not worked.
  6. Suppression of Cash/Cheques: Diversion of customer deposits and loan repayments into fictitious accounts.
  7. Alteration of Programs: Unauthorized access to systems to manipulate account balances.

Likely Causes:

  • Weak internal controls and supervision.
  • Non-compliance with KYC rules.
  • Poor IT and database management.
  • Negligence, inadequate training, and poor working conditions.
  • Fear of reporting fraud to regulators due to reputational concerns.

The audit committee mandated management to engage a forensic expert to investigate and report on the matter within four weeks. Your firm has been appointed for this engagement.

Required:

(a) Discuss the ethical principles applicable to this situation. (5 Marks)

(b) Advise on the procedures to gather evidence for an acceptable report to management. (5 Marks)

(c) Recommend the agencies and relevant laws management should use to tackle these problems, where legal actions might be required. (5 Marks)

(a) Ethical Principles Applicable to the Situation (5 Marks)

  1. Integrity: Ensure honesty and objectivity in investigating the fraud and presenting findings without bias.
  2. Confidentiality: Safeguard sensitive client information and avoid unauthorized disclosures.
  3. Objectivity: Maintain independence from management and other stakeholders to ensure unbiased conclusions.
  4. Professional Competence and Due Care: Use specialized skills, tools, and techniques to conduct a thorough and accurate investigation.
  5. Professional Behavior: Comply with relevant laws, standards, and regulations, ensuring that the investigation adheres to ethical and professional guidelines.

(b) Procedures for Gathering Evidence (5 Marks)

  1. Document Review: Collect and analyze financial statements, internal controls documentation, and relevant policies.
  2. Interview Key Personnel: Conduct interviews with staff, management, and other stakeholders involved in the processes.
  3. Data Analysis: Use forensic data analytics to identify unusual patterns, transactions, or discrepancies.
  4. System Audit: Examine IT systems for vulnerabilities, unauthorized access, and manipulation.
  5. Tracing Transactions: Track the flow of funds, particularly those linked to fictitious accounts or unauthorized transfers.
  6. Physical Inspection: Inspect physical records, such as cheques and withdrawal slips, to identify signs of forgery.
  7. Collaboration with Internal Audit: Leverage findings from the internal audit report to narrow down investigation areas.
  8. Evidence Preservation: Secure and document all evidence to ensure it is admissible in legal or regulatory proceedings.

(c) Agencies and Relevant Laws for Legal Action (5 Marks)

Recommended Agencies:

  1. Central Bank of Nigeria (CBN): Notify the regulator of compliance failures and seek regulatory guidance.
  2. Economic and Financial Crimes Commission (EFCC): Report cases of fraud involving financial crimes.
  3. Independent Corrupt Practices and Other Related Offences Commission (ICPC): Address corruption and abuse of office linked to internal fraud.
  4. Nigerian Financial Intelligence Unit (NFIU): Report suspicious transactions under anti-money laundering regulations.
  5. Police (Criminal Investigation Department): Pursue criminal charges against perpetrators.

Relevant Laws:

  1. Cybercrimes (Prohibition, Prevention, etc.) Act, 2015: Addresses unauthorized access and hacking of systems.
  2. Money Laundering (Prohibition) Act, 2011: Regulates suspicious financial transactions, particularly for fictitious accounts.
  3. Banks and Other Financial Institutions Act (BOFIA), 2020: Enforces operational compliance within the banking sector.
  4. Penal Code/Criminal Code: Governs prosecution for forgery and theft.
  5. Nigerian Data Protection Regulation (NDPR), 2019: Ensures accountability for data breaches linked to customer accounts.
Back to all questions

Elevate your professional expertise across key business domains with our comprehensive training programs

Our offerings

Contact Info

  • +233203701923
    +233543919232
  • info@nbcinstitute.com

Customer

Get In Touch

Follow us on our social media and get daily updates.

Facebook-f Twitter Linkedin-in Envelope
error: Content is protected !!