Course Description:

The training will enable the attendees to develop their skills and knowledge in relation to risk-based internal auditing to effectively carry out RBA's and report it in a highly professional style to management.

Risk Based Internal Auditing (RBIA) is defined by the Institute of Internal Auditors (IIA) as “a methodology that links internal auditing to an organization’s overall risk management framework”. RBIA allows internal audit to provide assurance to the bank’s/ organization’s board that various risk management processes are managing risks effectively, in relation to the risk appetite of the bank/ organization.

This intensive 2-day course is all about RBIA, what it is, how it differs from the conventional internal audit and most importantly of all how it may be planned and implemented within the organization.

Learning Objectives:

  • Internal Auditing, Risk Management and Compliance
  • Risk Management Framework
  • Operations Risk
  • Risk Based Internal Auditing (RBIA)
  • Audit Report
  • Corporate Governance
  • Governance, Risk and Compliance (GRC)

Seminar Fee Includes:

AM-PM Tea/Coffee
Seminar Material
Attendance Certificate
$100 Gift Cert for next seminar

Who will Benefit:

This course targets banking employees involved in the process of internal auditing and internal control departments. The course is also intended for those who are familiar with and/or interested in the operational risk management process.

  • Board members
  • Chief risk officers
  • Operational risk
  • Head of risk management
  • Chief compliance officers
  • Chief audit officers
  • Chief financial officers
  • Actuaries
  • Treasurers
  • Auditors (External & Internal)
  • Bank regulators and examiners
  • Risk management consultants
  • Sales and Marketing
  • Credit

Course Language:

Materials and handouts will be in English. Delivery will be in English/Arabic.


Basics banking operation with minimum two years of experience in internal audit and/or internal control areas of the bank.

Assessment Strategy:

Participants will be informally assessed on their interaction during sessions and their participation in exercises.

Course Outline:

Day One (8:30 AM - 4:30 PM) Day Two (8:30 AM - 4.30 PM)

8:30 AM - 9:00 AM: Registration Process

9:00 AM: Session Start

Module 1: Internal auditing, Risk Management & Compliance Triangle

  • The Fundamental Differences and Importance of its Convergence
  • Overlapping: Healthy or Wasteful?
  • Cooperation among these functions
  • Business Benefits of Integrating GRC Activities
  • Enabling Collaboration Across Business Functions
  • GRC, what is it about?

Module 2: Risk Catalog (Risk Taxonomies)

  • Introduction to di¬fferent types of risks categories
  • Inherent and residual risk
  • Risk Management Universe
  • Risk Management Framework
  • Credit Risk
  • Market Risk and Liquidity Risk
  • Operational risk
  • What is operational risk management framework?
    1. Risk events types, control, and reporting
    2. Self-assessment overview / Heat Map
    3. Key risk indicators (KPI’s)
    4. Business Continuity Plan vs. Disaster Recovery Plan
    5. Types of losses– actual, near misses and predictive incidents

Module 3: The evolution of Internal Auditing towards Risk-based Internal Auditing

  • What is risk-based internal auditing?
  • The transition from system-based to risk-based internal auditing
  • Internal audit professional standards
  • Different approaches to internal auditing
  • The nature of risk
  • Relationship between risk and objectives
  • Risk culture
  • Risk registration
  • Risk-Based Audit Approach
  • Risk-Based Audit Methodology
  • How and why audit units move into risk based audit programs
  • New Trend in Audit: Risk-based internal Audit
  • Risk-Based Internal Auditing
  • Audit Universe
  • Audit Scope
  • Mapping Business Unit

Module 4: Prepare Risk-Based Internal Auditing Plan and Execute it

  • Determination of internal auditing universe
  • Risk Mapping
  • Risk Registration
  • Developing internal auditing plan
  • Preparation of a clear plan to be approved by Audit Committee
  • Efficiency in the non-recurrence of Audit Notes
  • Audit references to policies and MORR
  • Identification and classification of audit risk

Day 2 - Lectures and Workshop Exercises

Module 5: The System of Internal Control

  • Definition and objectives of internal controls
  • Components of internal control system
  • Review control eff¬ectiveness
  • Roles and responsibilities in internal control
  • Auditing the control environment

Module 6: Writing Audit Report; how to impress reader?

  • Audit report writing skills
  • How to address challenges and add value through audit reporting
  • How to structure effective audit report
  • Statistical Sampling Techniques for audit population
  • The IIA standards for communication of audit finding and results
  • Example of alternative risk-based reporting format

Module 7: Internal Audit in the Context of Corporate Governance

  • Corporate Governance; Definition, Concept, Rules, Principles
  • Role of Audit Committee in checking audit notes (internal/external)
  • Effective Executive Management & Board Members
  • Examination of Credit and Operations administration
  • Using internal and external audit standards to audit GRC activities
  • Key components, practices and activities to audit

Module 8: Wrap up; Recommendations for a Successful RBIA

  • Build good processes with responsibilities and accountabilities
  • Conclusion and augmentations
  • Open Discussion

Meet Your Instructor

Hesham Hamdy
International GRC & Internal auditing Expert

An international Consultant / Trainer / Lecturer in Banking in general, and in Risk Management and Corporate Governance in particular. Before this, Hesham was the Chief Risk Officer of the Arab International Bank till December 2014 responsible for all risk management activities. Before this, Hesham joined Bank of Alexandria (220 branches) as CRO and Member of the new Senior Management Team responsible for re-engineering, modernizing and privatizing the bank, with the task of bringing together the strands of risk management, leading a team of experts in the fields of credit, operational and market risk, and responsible for Risk Management, Central Credit Administration and, Central Investigation.

Led by an experienced Internal auditing, Corporate Governance and Risk Management Expert who has held the following key senior positions:

  • Head, Internal auditing and Internal Audit Department of Bahrain Islamic Bank
  • Chief Risk Officer of Arab International Bank
  • Chief Risk Officer of Bank of Alexandria-Intesa Sanpaolo Bank
  • Head of Credit Inspectors of Riyad Bank
  • Head of Quality Assurance Team of Egyptian American Bank

Register Now

Online using Credit card

Get the Invitation
Pre-Register yourself and get the official Invite when venue and dates are announced for this seminar.
Call here to register +1-888-717-2436 or email at

Other Registration Option

By order form / PO#

Payment Mode

By Check -
Pay your check to (payee name) “MetricStream Inc” our parent company and Mail the check to:

ComplianceOnline (MetricStream, Inc),
2479 East Bayshore Road Suite 200
Palo Alto, CA 94303

By Wire -

Register / Pay by Wire Transfer

Please contact us to get details of wire transfer option.

Terms & Conditions to Register for the Seminar/Conference/Event

Your registration for the seminar is subject to following terms and conditions. If you need any clarification before registering for this seminar please call us @ +1-888-717-2436 or email us @

Payment is required 2 days before the date of the conference. We accept American Express, Visa and MasterCard. Make checks payable to MetricStream Inc. (our parent company).

Cancellations and substitutions:
Written cancellations through fax or email (from the person who has registered for this conference) received at least 10 calendar days prior to the start date of the event will receive a refund — less a $200 administration fee. No cancellations will be accepted — nor refunds issued — within 10 calendar days before the start date of the event.

On request by email or fax (before the seminar) a credit for the amount paid minus administration fees ($200) will be transferred to any future ComplianceOnline event and a credit note will be issued.

Substitutions may be made at any time. No-shows will be charged the full amount.

We discourage onsite registrations, however if you wish to register onsite, payment to happen through credit card immediately or check to be submitted onsite. Conference material will be given on the spot if it is available after distributing to other attendees. In case it is not available, we will send the material after the conference is over.

In the event ComplianceOnline cancels the seminar, ComplianceOnline is not responsible for any airfare, hotel, other costs or losses incurred by registrants. Some topics and speakers may be subject to change without notice.

Attendance confirmation and documents to carry to the seminar venue:
After we receive the payment from the registered attendee, an electronic event pass will be sent to the email address associated with the registrant 5 working days before the seminar date. Please bring the pass to the venue of the event.

Conference photograph / video:
By registering and attending ComplianceOnline conference, you agree to have your photographs or videos taken at the conference venue and you do not have any objections to ComplianceOnline using these photos and videos for marketing, archiving or any other conference related activities. You agree to release ComplianceOnline from any kind of claims arising out of copyright or privacy violations.

Media Partners


Media Partner Benefits
  • Logo and company data on the event website.
  • Logo on the conference material distributed during the conference.
  • Media partner’s brochure distributed along with conference material.
  • Logo on all the mailings before and after the event.
  • 10% discount to media partner's subscribers.

Media Partner To Do
  • Banner (min 728x90 or 468x60) on the media partner website.
  • Insertion of the event in the event calendar, both printed and/or online.
  • Announcement article of the conference on the magazine and/or website.
  • Dedicated email blast to media partner’s subscribers.
  • Article on the magazine and/or website after the conference.

Local Attractions

The Kuwait Towers are a group of three slender towers in Kuwait City, standing on a promontory into the Persian Gulf. They were the sixth, and last, group in the larger Kuwait Water Towers system of 34 towers (33 store water, one stores equipment), and were built in a style considerably different from the other five groups. The Kuwait Towers were officially inaugurated in March 1979 and are regarded as a landmark and symbol of modern Kuwait.

Souq Al-Mubarakiya is a souq in Kuwait City, Kuwait. It is one of the oldest souqs in Kuwait, and was the center of trade prior to the discovery of oil. This popular traditional market is located between Abdullah Al-Mubarak, Abdullah Al-Salem & Palestine Streets. This market has been around for at least 200 years. You can spend hours in this market strolling around and discovering reasonable bargains on heritage goods such as Persian silk carpets, real Arab antiques, perfumes like musk and oud, and traditional costumes. This place is perfect whether you want to shop, eat, or for sightseeing. Al-Mubarakiya features a variety of shops such as dates, honey, spices, sweets, vegetables, fruits, meat, and fish. In addition to a range of shops accessories, gold and silver jewelries. The market also hosts two mini museums: Sheikh Mubarak Kiosk and the first Islamic pharmacy in Kuwait, and admission is free.

The Kuwait National Museum is the national museum of Kuwait. It was established in 1983 and designed by architect Michel Ecochard. The museum comprises five buildings set around a central garden, their organization is parallel to the architectural plan of the vernacular Arab mud house with its central courtyard. The main buildings are connected to each other with elevated walkways. Ecochard explains that the grouping of those buildings corresponds to knowledge of the Arabian peninsula, its geography, its history and its civilization

The Al Hamra Tower is a completed skyscraper in Kuwait City, Kuwait. Al Hamra is the tallest building in Kuwait and the 23rd tallest in the world. Designed by architectural firms Skidmore, Owings and Merrill and Callison, it is the tallest building in Kuwait, the tallest carved concrete skyscraper in the world, and the twenty first tallest building in the world at 414 m. The tower was included in the list of the best inventions of 2011 by TIME magazine.

Kuwait Zoo is a zoo located in Farwaniya, Kuwait. The zoo suffered extensive damages during the 1990 Iraqi Invasion. Nevertheless, most of the maintenance work has been finished, and the zoo reopened after the modification and renovation work was completed. Part of these renovations in early 1993 included the addition of new animals from other zoos. The zoo is around 180,000 m2 in area. It is divided into four major sections that include an animal section and a cultural center and life sciences division.

We need below information to serve you better

Best Sellers
You Recently Viewed