Audits & Risk Management

Audit & Risk
Assessment Tools
Risk Management

630 - ACH Audit Guide for Third-Party Service Providers & Third-Party Senders

Electronic Version

The ACH Audit Guide for Third-Party Service Providers and Third-Party Senders is a publication designed to assist the third-party in completing an annual ACH audit as required by the Nacha Operating Rules. This is a working document that will walk you through the steps of completing an ACH Rules Compliance Audit along with reviewing sound business practices, related compliance areas, online banking products, and government benefit payments. An audit preparation checklist is included to assist in gathering information needed for review. The document includes tools to help the auditor understand ACH participants, payment applications, and recent revisions to the Nacha Operating Rules. Electronic Version

585 - ACH Audit Workbook

Electronic

Regulators and the ACH Rules require all financial institutions to conduct an ACH audit annually. And, as a result of the 2019 removal of Appendix Eight from the ACH Rules, institutions are now encouraged to take a risk-based approach to their audit. If you are conducting your audit internally, this fully interactive workbook will eliminate guesswork and guide you through the process. Bringing in pertinent criteria from the ACH Rules, the workbook examines ODFI and RDFI internal controls, OFAC controls, the ACH Operator relationship and related regulatory requirements. Several enhancements have been made in 2021 to incorporate member-feedback and make the workbook even more user-friendly including bookmarks for quick navigation between audit sections, icons to indicate questions pertaining to ACH Rules requirements and radio buttons for increased efficiency. Instructions for use are included. Upon completion of the workbook pages, a summary report is generated to help you quickly identify and prioritize changes to reduce risk.

This publication is copyrighted and purchase is good for one download/use. Contact Member Support for discounted pricing on multiple downloads. This publication is formatted as a PDF document. Users must have access to Adobe Reader.

539 - Guide for Completing a Third-Party Sender ACH Risk Assessment

Electronic Version

The Guide for Completing a Third-Party ACH Risk Assessment is a publication designed to assist in completing a step-by-step assessment. Each Third-Party Sender is required to perform a risk assessment of their ACH activities and implement a risk management program in accordance with the requirements of the Nacha Operating Rules. Individual sections within the document address: risk management systems & controls, credit risk, high-risk activities and direct access to the ACH Operator, compliance and transaction risk, vendor & third-party management, information technology & information security and business continuity. A pre-assessment checklist and guide directions are included to assist the assessor. The document includes tools to help the assessor understand ACH participants and payment applications. Electronic Version

2023 Version Available Mid-March

538 - Guide for Completing Your ACH Risk Assessment

Electronic Version

The 2023 Guide for Completing Your ACH Risk Assessment is a publication designed to assist financial institutions in completing a step-by-step assessment. Each financial institution is required to perform a risk assessment of their ACH activities and implement a risk management program in accordance with the requirements of their regulators. Individual sections within the document address: risk management systems and controls, credit risk, high-risk activities and direct access to the ACH Operator, compliance and transaction risk, vendor and third-party management, information technology and information security, and business continuity. A pre-assessment checklist and guide directions are included to assist the assessor. The document includes tools to help the assessor understand ACH participants and payment applications.

564 - ODFI Audit Checklists for Originators & Third-Party Senders

Electronic

This tool contains a series of ODFI Audit checklists providing an efficient tool for ODFIs to gauge their Originators/Third-Party Senders understanding and compliance to the ACH Rules. These checklists can be completed by financial institution staff or sent to the Originator and/or Third-Party to complete on its own then return to the ODFI. Each Audit Checklist is a fillable PDF form for each type of ACH application. Complete or send the forms that are specific to the ACH services your institution originates.

200 - Remote Deposit Capture (RDC) Corporate Self Assessment

Electronic Version

Don't have time to conduct an annual onsite audit on all your corporate RDC customers? The RDC Corporate Self Assessment is your answer! This self assessment can be distributed to all your RDC business customers to complete at their own pace. Their answers to the assessment's basic "Yes or No" questions, will provide you with the insight you need on the customer's RDC operations to identify areas of risk and training opportunities.

The RDC Corporate Self Assessment is provided in an electronic format to allow for your unique customization and for the distribution to multiple RDC customers.

515 - Remote Deposit Capture Risk Assessment Workbook

Electronic Version

Updated to include Mobile Remote Deposit risks, this comprehensive, easy-to-use Remote Deposit Capture Risk Assessment Workbook is designed to assist Financial Institutions in addressing remote deposit capture risk. The Workbook content mirrors the FFIEC Remote Deposit Capture Risk Management Guidance. The Remote Deposit Capture Risk Assessment Workbook guides you in completing the step-by-step risk assessment. User-friendly worksheet questions are easily answered Yes/No and include room for comments, along with a designated action plan to assist you in developing a comprehensive RDC risk management program. Operations staff, risk managers, compliance officers as well as audit personnel will find this workbook a useful tool.

420 - Wire Transfer Risk Assessment and Audit of Internal Controls Guide

The Wire Transfer Risk Assessment and Audit of Internal Controls Guide is a publication designed to assist financial institutions in completing a review of their wire transfer internal controls. Individual sections within the document include risk management controls and oversight; regulatory compliance and transaction risk, vendor management and contingency planning, information technology and security, and credit risk. An assessment questionnaire and guide directions are included to assist the auditor. The document includes tools to help the auditor understand the legal framework of wire transfers.

414 - ACH Risk Management Handbook, 7th Edition

A Comprehensive Guide to ACH Risk Issues and Control Procedures

ACH participants must take action to control risk in any payment system — including the ACH Network. The 7th edition explains the types of ACH payments risk, assesses the operational implications and provides sound business practices for developing an effective risk management program. In addition, case studies are included in each chapter to offer realistic examples to assist you in evaluating and implementing your risk management program.

563 - Managing ACH Credit Risk Guide

This groundbreaking publication (formerly the Guide to Establishing ACH Exposure Limits) was the first of its kind in the payments space - a collection of real-life best practices for managing ACH credit risk and establishing ACH exposure limits, gathered from member financial institutions of all sizes.

544 - ODFI Risk Management Guide

Electronic Version

This guide also contains the following attachments: ODFI Risk Management Checklist, ACH Origination Approval Form, ACH Exposure Limit Change Request Form, ACH Originator Signature Agreement, ACH Origination Activity Review Form, & more!

432 - Revised Uniform Commercial Code Article 4A and the ACH System (4th Edition)

Print (hard copy book)

The refreshed 4^th Edition contains new statistic and evaluates the impact of the UCC 4A on security procedures, bank/corporate agreements, recommended contractual provisions, errors, unauthorized entries and more. Includes Article 4A (law unchanged) with staff commentary. For financial institutions and corporations that handle ACH wholesale credits.

432E - Revised Uniform Commercial Code Article 4A and the ACH System (4th Edition)

via App (Adobe-based ebook)

Online Store

Search Products

Education

SFE provides professional development sessions to keep you prepared for rapid changes in ACH, check, card wire and emerging payments systems allowing you to choose the training methods that work best for your staff.
Upcoming Events

more information

Online Store

SFE offers a wide variety of publications which are valuable tools to help you increase awareness and understanding of established rules and applications, reduce risk and increase operational efficiency.

more information

Member Information

SFE members receive SFE News Link every week which contains a brief overview of an issue, typically with a link that provides additional detailed information. SFE members also have access to SFE Support Hotline, samples, forms, in addition to deep discounts on education, publications and service.

more information

ACH Audits & Risk Assessments

Strengthen your ACH operations in compliance, risk controls, and efficiency. Allow your trusted SFE advisors to conduct your annual ACH Audit and recommended Risk Assessment.

Request for Proposal