Responsibility, Scope and Methodology The BAEC oversees the performance and effectiveness of the Internal Audit function based on the approved key performance indicators. The BAEC assesses the competency and experience of the Internal Audit staff as well as the adequacy of resources for the Internal Audit to carry out its functions effectively. The BAEC also ensures that the Internal Audit staff have the authority to discharge their role objectively and independently, free from any relationship or conflict of interest. To reflect the independence of Internal Audit, the GCIA reports functionally to the Board through the BAEC and administratively to the GCEO. The GCIA is Zalfitri Abd Mutalip who has a degree in Bachelor of Science in Business Administration (Finance), a Certificate in Internal Auditing for Financial Institution (CIAFIN) and is a Chartered Professional in Islamic Finance (CPIF). He has extensive experience in auditing in the financial industry and has helmed the GIAD of Bank Islam since 2017. The annual audit plan is reviewed and approved by the BAEC before the beginning of each financial year. The audit plan adopts a risk-based approach in determining the auditable units and frequency of the audits which focussed on the following three (3) components: The GIAD adopts the standards and principles outlined in the Internal Controls Framework of Committee of Sponsoring Organization of the Treadway Commission (COSO) and the objectives set by the Institute of Internal Auditors’ International Professional Practices Framework which comprises the core principle for the Professional Practice of Internal Auditing, the definition of Internal Auditing and Code of Ethics. The outcome of the audits conducted, including its risks, rootcauses and recommendations are deliberated by the BAEC on a regular basis, i.e., every two (2) months. Resolution of the audit findings and recommendations are performed by the Management and closely monitored by the Management Audit Committee (MAC) whose members comprised the Management members. In addition to that, the outcome of the Shariah audit reports including their findings, risks, rootcauses and recommendations are notified and deliberated at the Shariah Supervisory Council (SSC) meetings. Resources The overall costs incurred to maintain the internal audit function in the Group for the FY2024 was approximately RM9.48 million (2023: RM9.69 million), consists mainly of salaries and other audit related expenditures. As at 31 December 2024, the GIAD has a staff strength of 39 auditors, all of whom are equipped with the relevant experience and qualifications. In addition, 31 of the auditors had obtained the minimum recommended required certification, namely, Certification for Bank Auditors (CBA)/ Certified Information System Auditor (CISA)/CIAFIN and/or Bank Audit Practices (BKA). The GIAD is committed to provide an independent, objective assurance and advisory services that will add value and improve the Group’s operations. Impact and likelihood of the inherent risk Known quality of respective controls or risk mitigants in place The existence of effective risk transfer and loss impact reduction practices in minimising potential losses from negligence or fraud 01 02 03 Bank Islam Malaysia Berhad ◆ Integrated Annual Report 2024 242 Board Audit & Examination Committee (BAEC) Report
RkJQdWJsaXNoZXIy NDgzMzc=