• Register
Return to: Home > News > CIIA publishes updated guidance on risk management in UK financial services

CIIA publishes updated guidance on risk management in UK financial services

The UK Chartered Institute of Internal Auditors (CIIA UK) has released guidance on how financial institutions in the UK should manage risks in an updated edition of the Guidance on Effective Internal Audit in Financial Services, widely known as the Financial Services Code.


Q&A: Code on managing risk in UK financial services revamp - CIIA UK policy and external relations director Alisdair McIntosh discusses the changes to the code and how it aims to strengthen the internal audit function within companies. 


The updated guidance builds on the original code which was published in July 2013 in the aftermath of the 2008 financial crisis. The review of the code was initiated by the CIIA and conducted by an independent committee of senior industry members, chaired by Mike Ashley, chair of the audit committee of Barclays and involved two rounds of consultation with the sector between September 2016 and March 2017.

The key changes to the code include the following requirements:

  • Internal audit reporting annually on whether firms are adhering to their risk management framework.
  • Internal audit reviewing actions taken by the firm following any significant adverse event, such as regulatory breaches.
  • Internal audit plans must be regularly reviewed taking into account new and emerging risks.
  • Looking critically at the work of the organisations other control functions in terms of processes and quality.
  • Underlining the central role internal audit should play in assessing the culture of the firm, including whether behaviours are in line with stated values, ethics, risk appetite and policies.
  • Audit committees must discuss objectivity and independence of its chief internal auditors annually after seven years in the role.

CIIA chief executive, Ian Peters, said: “The enhanced Code should help ensure that internal auditors can play their full part in effectively protecting the assets, reputation and sustainability of their organisations. Internal auditors now need to drive these changes forward.  They should demand, and get, stronger backing from audit committees and board.  Boards, in turn, should expect and demand more from internal audit departments.”

Top Content

    Australia: risk management loses out to profit

    Accounting giant PwC has been misrepresented by client AMP, one of Australia’s largest financial institutions, in correspondence to the corporate regulator, according to evidence given to the Financial Services Royal Commission (FSRC). Tom Ravlic reports.

    read more

    SASB: a sea change in interest

    With Sustainability Accounting Standards Board (SASB) founder and chair Jean Rogers stepping down from her role, Jeffrey Hales has taken over the position. Jonathan Minter caught up with him to find out his plans for the organisation

    read more

    ICAS: Keeping reputation front and centre

    Jonathan Minter speaks with the new president of ICAS, Sandy Manson, about the profession’s reputational and technological challenges, and how to turn them in to opportunities

    read more

    GDPR: challenge or opportunity?

    With the General Data Protection Regulation (GDPR) finally in force, Joe Pickard investigates attitudes and opinions on what the regulation will mean for the future of accountancy

    read more

    IFRS 9: are we ready for another crisis?

    With the 2008 Banking crisis a decade old, Jonathan Minter speaks to Burkhard Eckes, chair of the Banks Working Party, about the work of the group and how IRFS 9 is looking to prepare banks for another crash.

    read more
Privacy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.