Commercial Bank of Ceylon PLC

Annual Report 2018

Board Audit Committee Report

Composition of the Committee

Board Audit Committee (the BAC) consists of following members whose profiles are given in the section on Board of Directors and Profiles in the chapter on Strategic Report

Board members

Mr S Swarnajothi* (Chairman)
Prof A K W Jayawardane* (Director)
Mr K Dharmasiri* (Director)
Ms N T M S Cooray* (Director)
Justice K Sripavan* (Director)

Regular attendees by invitation

Mr S Renganathan
(Managing Director/Chief Executive Officer)
Appointed w.e.f. July 27, 2018. (Attended six meetings as Chief Operating Officer up to July 26, 2018)

Mr J Durairatnam
(Managing Director/Chief Executive Officer)
Retired w.e.f. July 26, 2018

Mr S C U Manatunge
(Director/Chief Operating Officer)
Appointed w.e.f. July 27, 2018

Mr K D N Buddhipala (Chief Financial Officer)
Mr V S Rajasooriyar
(Assistant General Manager – Compliance)
Mr S K K Hettihamu (Chief Risk Officer)
Mr J Premanath (Assistant General Manager – Management Audit)
Mr Reyaz Mihular (Senior practicing Chartered Accountant appointed as Consultant to BAC w.e.f. October 08, 2018 and invited to attend meetings)

Secretary to the Committee

Mr J Premanath (Assistant General Manager – Management Audit)

*Independent Non-Executive Director

Attendance at Meetings

Name Eligible to attend/ Attended
Mr S Swarnajothi 10/10
Prof A K W Jayawardane 10/08
Mr K Dharmasiri 10/10
Ms N T M S Cooray 10/09
Justice K Sripavan 10/10
Mr S Renganathan 10/10
Mr J Durairatnam 06/06
Mr S C U Manatunge 04/04

The Committee held ten (10) meetings during the financial year ended December 31, 2018. The proceedings of these meetings with adequate details of matters discussed are regularly reported to the Board.

Representatives of the Bank’s External Auditors, Messrs Ernst & Young also participated in five (5) meetings by invitation, with their appointment during the year 2018. The Committee also invited members of the Senior Management of the Bank to participate in the meetings from time to time on a need basis.

Committee continuously monitored the progress of the implementation of SLFRS 9 which became effective from January 2018.

Charter of the Committee

The Charter of the BAC approved by the Board, clearly defines the Terms of Reference of the Committee and is annually reviewed to ensure that new developments relating to the Committee’s functions are addressed. The Charter of the Committee was last reviewed and approved by the Board in November, 2018.

The Committee assists the Board in discharging its responsibilities and exercises oversight over financial reporting, internal controls, internal audit, and external audit.

The Banking Act Direction No. 11 of 2007 on “Corporate Governance for Licensed Commercial Banks in Sri Lanka” and its subsequent amendments (hereinafter referred to as the Direction), “Rules on Corporate Governance under Listing Rules of the CSE” and “Code of Best Practice on Corporate Governance”, issued by CA Sri Lanka further regulate the composition, roles, and functions of the Committee.

The Committee is empowered by the Board to:

  • Ensure that financial reporting system in place are effective and well managed in order to provide accurate, appropriate and timely information to the Board, Regulatory Authorities, the Management, and other stakeholders.
  • Review the appropriateness of accounting policies, ensure adherence to statutory and regulatory compliance requirements as well as applicable accounting standards.
  • Ensure that the Bank adopts and adheres to high standards of Corporate Governance practices, conforming to the highest ethical standards and good industry practices in the best interests of all stakeholders.
  • Evaluate the adequacy, efficiency and effectiveness of risk management measures, internal controls and governance processes in place to avoid, mitigate, or transfer current and evolving risks.
  • Monitor all aspects of internal and external audit and inspection programmes of the Bank and review Internal and External Audit Reports for follow up with the Management on their findings and recommendations.
  • Review the Interim Financial Statements and Annual Financial Statements of the Bank in order to monitor the integrity of such statements prepared for disclosure, prior to submission to the Board.

Activities in 2018

Reporting of financial position and performance

The Committee assisted the Board in its oversight on the preparation of Financial Statements to evidence a true and fair view on financial position and performance. This process is based on the Bank’s accounting records and in accordance with the stipulated requirements of the Sri Lanka Accounting Standards. In fulfilling its oversight responsibilities, the Committee reviewed and discussed the Interim and Consolidated Financial Statements, including the acceptability of the accounting principles, reasonableness of significant estimates and judgements.

The prevailing internal controls, systems and procedures were assessed by the Committee and it expressed the view that adequate controls and procedures were in place to provide reasonable assurance to the effect that the Bank’s assets are safeguarded and the financial position of the Bank is well monitored and accurately reported.

Progress of implementation of SLFRS 9

The Committee continuously monitored the progress of implementation of SLFRS 9 as per the requirements of Sri Lanka Accounting Standard – SLFRS 9 on “Financial Instruments” (SLFRS 9) that became effective in the preparation of Financial Statements from January 1, 2018.

Accordingly, the Committee reviewed and discussed the following:

  • Development of relevant accounting policies and impairment methodology documentation
  • Classification of all assets and measurement in line with the Bank’s business model and product characteristics
  • Development of Expected Credit Loss (ECL) models using forward looking information for computation of impairment which replaces the incurred loss model under LKAS 39
  • First day impact and impact to the Capital Adequacy Ratios

Implementation of Basel III

The Committee reviewed the progress in implementation of Basel III Direction No. 01 of 2016 issued by the Central Bank of Sri Lanka (CBSL) which was effective from July 1, 2017. Bank has fully complied with the requirements of the aforesaid Direction and submitted returns under Basel III guidelines.

Committee reviewed the progress of computation for “Operational Risk” under “The Standardised Approach” and “Alternative Standardised Approach” as per requirement in the CBSL guidelines.

Internal Capital Adequacy Assessment Process (ICAAP)

The Committee reviewed the effectiveness of internal control mechanism in place to meet the regulatory requirements on ICAAP and the mechanism in place to ensure integrity, accuracy, and reasonableness in capital assessment process of the Bank for the year 2017, as per the Section 10 of Banking Act Direction No. 01 of 2016 on “Regulatory Framework on Supervisory Review Process”.

Oversight on regulatory compliance

The Committee closely scrutinised compliance with mandatory banking and other statutory requirements and the systems and procedures that are in place to ensure compliance with such requirements. The quarterly reports submitted by the Compliance Officer were used by the Committee to monitor compliance with all such legal and statutory requirements. The Bank’s Inspection Department has been mandated to conduct independent test checks covering all regulatory compliance requirements, as a further monitoring measure.

Identification of risks and control measures

The Bank has adopted a risk-based audit approach to assess the effectiveness of internal control procedures in place to identify and manage all significant risks reviewed by the Committee. The risk rating of branches and certain business units of the Bank has been reviewed to capture current risk profiles of such business units while providing insight to emerging and potential risks. Reviewed Risk Rating Methodology had been approved by the Committee during the year 2018 and adopted for assessing and measuring risks identified during audit assignments carried out by the inspection function. The Committee seeks and obtains the required assurances from the Management/Business Units on the remedial action in respect of the identified risks to maintain the effectiveness of internal control procedures.

Internal audit and inspection

The Committee ensured that the internal audit function is independent of the activities it audited and that it was performed with impartiality, proficiency and due professional care.

The Committee approved the Programme of Inspection formulated by the Inspection Department and the Information Systems Audit Unit (ISAU) and reviewed its progress of implementation regularly.

The Bank’s Inspection Department carried out, online and on-site inspections of local business units including subsidiaries and overseas operations. With the concurrence of the Board, the Bank continued to engage the services of four (4) firms of Chartered Accountants approved by the CBSL in order to supplement Bank’s Inspection Department in carrying out inspection assignments.

ISAU conducted on-site/off-site audits including monitoring through system-based Audit Tools, reviews of change management activities and verification of compliance with industry standards such as ISO 27001:2013/PCI-DSS/Baseline Security Standards (BSS) to ensure safeguarding IT assets of the Bank, subsidiaries and overseas operations. The Committee reviewed reports submitted by ISAU.

Six hundred and thirty nine (639) inspection reports on Business Units and Departments including subsidiaries and overseas operations received the attention of the Committee and the operational deficiencies, risks highlighted and the recommendations were given due attention.

Major findings of internal investigations with recommendations of the Management were considered and appropriate instructions issued. The Committee also invited representatives from the audit firms assisting in inspections to make presentations on their observations and findings.

The Committee evaluated the Internal Audit Function covering key areas such as scope, quality of internal audits, independence, and resources.

Members of the Committee visited some of the branches during the year 2018 to get a better understanding of branch operations.

External audit

With regard to the external audit function of the Bank, the role played by the Committee is as follows:

  • Assisting the Board in engaging External Auditors for audit services, in compliance with the provisions of the Direction and agree on their remuneration with the approval of the shareholders.
  • Monitoring and evaluating the independence, objectivity and effectiveness of External Auditor.
  • Reviewing non-audit services provided by the Auditors, with a view to ensuring that such functions do not fall within the restricted services and provision of such services will not impair the External Auditors’ independence and objectivity.
  • Discussing the audit plan, scope and the methodology proposed to be adopted in conducting the audit with the Auditors prior to commencement of the annual audit.
  • Discussing all relevant matters arising from the interim and final audits, and any matters the Auditor may wish to discuss, including matters that may need to be discussed in the absence of KMP.
  • Reviewing the External Auditors’ Management Letter and the Management’s responses thereto.

The Auditors were provided with the opportunity of meeting Non-Executive Directors separately, without any executive being present, to ensure that the Auditors had the independence to discuss and express their opinions on any matter. It provided the assurance to the Committee that the Management has fully provided all information and explanations requested by the Auditors.

At the conclusion of the audit, the Committee also met the Auditors to review the Auditors’ Management Letter before it was submitted to the Board and CBSL.

The members of the Committee evaluated the Bank’s former External Auditor Messrs KPMG covering key areas such as scope and delivery of audit, resources, and quality assurance initiatives, during the year 2018.

Mechanism of internal controls relating to financial reporting

Sections 3 (8) (ii) (b) and (c) of the Banking Act Direction No. 11 of 2007, stipulates the requirements to be complied with by the Bank to ensure reliability of the financial reporting system in place at the Bank.

The Committee is assisted by the External Auditor and Inspection Department to closely monitor the procedures designed to maintain an effective internal control mechanism to provide reasonable assurance that this requirement is being complied with.

In addition, the Committee regularly monitored all exceptional items charged to the income statement, long outstanding items in the Bank’s chart of accounts, credit quality, risk management procedures and adherence to classification of non-performing loans and provisioning requirements specified by the CBSL. The Committee also reviewed the credit monitoring and follows-up procedures and the Internal Control Procedures in place to ensure that necessary control and mitigatory measures are available in respect of newly-identified risks.

Ethics and good governance

The Committee continuously emphasised on upholding ethical values of the staff members. In this regard, a Code of Ethics and Whistle-Blower’s Charter was put in place and followed for educating and encouraging all members of staff to resort to whistle-blowing if they suspect wrong doings or other improprieties. Highest standards of corporate governance and adherence to the Bank’s Code of Ethics were ensured. All appropriate procedures were in place to conduct independent investigations into incidents reported through whistleblowing or identified through other means. The Whistle-Blower’s Charter guarantees the maintenance of strict confidentiality of the identity of the whistle-blowers.

Sri Lanka Accounting Standards

Committee reviewed the revised policy decisions relating to adoption of new and revised Sri Lanka Accounting Standards (SLFRS/LKAS) applicable to the Bank and made recommendation to the Board. The Committee would continue to monitor the compliance with relevant accounting standards and keep the Board informed at regular intervals.

Evaluation of the Committee

An independent evaluation of the effectiveness of the Committee was carried out by the other members of the Board during the year. Considering the overall conduct of the Committee and its contribution on the overall performance of the Bank, the Committee has been rated as highly effective.

S Swarnajothi
Chairman – Board Audit Committee

February 22, 2019