Audits & Risk Management
630 - ACH Audit Guide for Third-Party Service Providers & Third-Party Senders
Electronic Version
The ACH Audit Guide for Third-Party Service Providers and Third-Party Senders is a publication designed to assist the third-party in completing an annual ACH audit as required by the Nacha Operating Rules. This is a working document that will walk you through the steps of completing an ACH Rules Compliance Audit along with reviewing sound business practices, related compliance areas, online banking products, and government benefit payments. An audit preparation checklist is included to assist in gathering information needed for review. The document includes tools to help the auditor understand ACH participants, payment applications, and recent revisions to the Nacha Operating Rules. Electronic Version
585 - ACH Audit Workbook
Electronic
539 - Guide for Completing a Third-Party Sender ACH Risk Assessment
Electronic Version
The Guide for Completing a Third-Party ACH Risk Assessment is a publication designed to assist in completing a step-by-step assessment. Each Third-Party Sender is required to perform a risk assessment of their ACH activities and implement a risk management program in accordance with the requirements of the Nacha Operating Rules. Individual sections within the document address: risk management systems & controls, credit risk, high-risk activities and direct access to the ACH Operator, compliance and transaction risk, vendor & third-party management, information technology & information security and business continuity. A pre-assessment checklist and guide directions are included to assist the assessor. The document includes tools to help the assessor understand ACH participants and payment applications. Electronic Version
2023 Version Available Mid-March
538 - Guide for Completing Your ACH Risk Assessment
Electronic Version
The 2023 Guide for Completing Your ACH Risk Assessment is a publication designed to assist financial institutions in completing a step-by-step assessment. Each financial institution is required to perform a risk assessment of their ACH activities and implement a risk management program in accordance with the requirements of their regulators. Individual sections within the document address: risk management systems and controls, credit risk, high-risk activities and direct access to the ACH Operator, compliance and transaction risk, vendor and third-party management, information technology and information security, and business continuity. A pre-assessment checklist and guide directions are included to assist the assessor. The document includes tools to help the assessor understand ACH participants and payment applications.
564 - ODFI Audit Checklists for Originators & Third-Party Senders
Electronic
This tool contains a series of ODFI Audit checklists providing an efficient tool for ODFIs to gauge their Originators/Third-Party Senders understanding and compliance to the ACH Rules. These checklists can be completed by financial institution staff or sent to the Originator and/or Third-Party to complete on its own then return to the ODFI. Each Audit Checklist is a fillable PDF form for each type of ACH application. Complete or send the forms that are specific to the ACH services your institution originates.
200 - Remote Deposit Capture (RDC) Corporate Self Assessment
Electronic Version
Don't have time to conduct an annual onsite audit on all your corporate RDC customers? The RDC Corporate Self Assessment is your answer! This self assessment can be distributed to all your RDC business customers to complete at their own pace. Their answers to the assessment's basic "Yes or No" questions, will provide you with the insight you need on the customer's RDC operations to identify areas of risk and training opportunities.
The RDC Corporate Self Assessment is provided in an electronic format to allow for your unique customization and for the distribution to multiple RDC customers.
515 - Remote Deposit Capture Risk Assessment Workbook
Electronic Version
Updated to include Mobile Remote Deposit risks, this comprehensive, easy-to-use Remote Deposit Capture Risk Assessment Workbook is designed to assist Financial Institutions in addressing remote deposit capture risk. The Workbook content mirrors the FFIEC Remote Deposit Capture Risk Management Guidance. The Remote Deposit Capture Risk Assessment Workbook guides you in completing the step-by-step risk assessment. User-friendly worksheet questions are easily answered Yes/No and include room for comments, along with a designated action plan to assist you in developing a comprehensive RDC risk management program. Operations staff, risk managers, compliance officers as well as audit personnel will find this workbook a useful tool.
420 - Wire Transfer Risk Assessment and Audit of Internal Controls Guide
The Wire Transfer Risk Assessment and Audit of Internal Controls Guide is a publication designed to assist financial institutions in completing a review of their wire transfer internal controls. Individual sections within the document include risk management controls and oversight; regulatory compliance and transaction risk, vendor management and contingency planning, information technology and security, and credit risk. An assessment questionnaire and guide directions are included to assist the auditor. The document includes tools to help the auditor understand the legal framework of wire transfers.
414 - ACH Risk Management Handbook, 8th Edition
A Comprehensive Guide to Mitigating Risk
ACH participants must take action to control risk in any payment system - including the ACH Network. The 8th edition provides the latest information on Nacha's strategies to identify and mitigate risks and provides recommendations for developing an effective risk management program for any organization involved in the creation or processing of ACH transactions. The threats to ACH payments are not unique to the ACH Network and the lessons learned can be applied to create a holistic payments risk management program. In addition, case studies are included in each chapter to offer realistic examples to assist you in evaluating and implementing your risk management program. This manual is an invaluable tool for individuals building or improving the Risk Management programs at their organization and for candidates studying for the AAP or APRP exams.
563 - Managing ACH Credit Risk Guide
This groundbreaking publication (formerly the Guide to Establishing ACH Exposure Limits) was the first of its kind in the payments space - a collection of real-life best practices for managing ACH credit risk and establishing ACH exposure limits, gathered from member financial institutions of all sizes.
544 - ODFI Risk Management Guide
Electronic Version
This guide also contains the following attachments: ODFI Risk Management Checklist, ACH Origination Approval Form, ACH Exposure Limit Change Request Form, ACH Originator Signature Agreement, ACH Origination Activity Review Form, & more!
432 - Revised Uniform Commercial Code Article 4A and the ACH System (4th Edition)
Print (hard copy book)
The refreshed 4th Edition contains new statistic and evaluates the impact of the UCC 4A on security procedures, bank/corporate agreements, recommended contractual provisions, errors, unauthorized entries and more. Includes Article 4A (law unchanged) with staff commentary. For financial institutions and corporations that handle ACH wholesale credits.
432E - Revised Uniform Commercial Code Article 4A and the ACH System (4th Edition)
via App (Adobe-based ebook)
The refreshed 4th Edition contains new statistic and evaluates the impact of the UCC 4A on security procedures, bank/corporate agreements, recommended contractual provisions, errors, unauthorized entries and more. Includes Article 4A (law unchanged) with staff commentary. For financial institutions and corporations that handle ACH wholesale credits.