Skip to main content

Non-IT Compliance Audits

An SBS non-IT compliance audit is a valuable supplement to your IT audit and network security testing services.



  • An industry expert, with extensive knowledge of the regulations and security issues that your organization struggles with, will execute your testing.
  • Receive an easy-to-read, management-ready report.


Talk to a Product and Service Expert!

ACH Audit

The ACH audit will review the institution's compliance with the National Automated Clearing House Association (NACHA) Audit guidelines and the Board of Directors' approved policy.

+ Audit Includes

After gathering general information about the bank’s ACH environment, the following areas will be covered as appropriate based on the types of ACH functions performed by the financial institution:

  • ACH Background
  • General Information
  • ACH Receipt
  • Third-Party Service Providers/Third Party Senders
  • ODFI ACH Origination
  • Treasury ACH

BSA Audit

SBS can help with the establishment of your BSA program and/or perform an audit/test of your existing program.

Credentialed Resources – SBS' dedicated BSA review team is made up of experienced consultants who are former bank executives and BSA officers.

+ Audit Includes

The audit scope includes, but is not limited to the items listed below:

  • BSA/AML/OFAC compliance risk assessments
  • BSA/AML/OFAC compliance program, including policies and procedures
  • BSA/AML/OFAC internal controls, including board and senior management oversight
  • Review of independent testing, including prior audit and examination findings and corrective actions
  • Staff qualifications for BSA compliance and day-to-day monitoring
  • Scope, frequency, and documentation of employee training program
  • Customer Identification Program (CIP), including sampling
  • Customer Due Diligence (CDD) and Enhanced Due Diligence (EDD), including sampling
  • Suspicious Activity Reporting (SAR), including transaction sampling
  • Currency transaction reporting (CTR), including transaction sampling
  • CTR exemption review
  • Information sharing, 314(a) and 314(b)
  • Monetary instrument sales, including transaction sampling
  • Wire transfer operations, as it pertains to BSA, including transaction sampling
  • Nonbank Financial Institutions (NBFI), including money service businesses (MSB)
  • Prepaid Access Devices
  • Unlawful Internet Gambling Enforcement Act (UIGEA)
  • Financial Elder Abuse
  • Recordkeeping and retention requirements