03 · Audit & Assurance
Independent, risk-based audits of your anti-money laundering framework — testing that your systems, controls and processes meet regulatory expectations and actually work in practice.
At a glance
Overview
Regulators — and increasingly banking partners — expect an independent AML audit at regular intervals. It’s not enough to have policies on paper; you have to evidence that they operate effectively.
We deliver targeted audits of your AML/CFT framework, controls and processes, with clear, risk-rated findings and a practical remediation plan to close gaps and strengthen effectiveness.
The service in detail
An audit is only useful if it is independent, evidence-based and actionable. We test against the regulations and your own policies, sample real cases, and grade every finding by risk — so you know exactly what to fix first.
Authorised and registered firms needing an independent AML audit — to satisfy the regulator, meet a banking partner’s due-diligence request, or give the board assurance ahead of growth or a transaction.
What we review
AML/CFT policies, the business-wide risk assessment, roles and MLRO oversight.
Customer due diligence, KYC/KYB, EDD triggers and beneficial-ownership checks.
Rules, thresholds, alert handling and the effectiveness of your monitoring tooling.
Screening coverage, list management, fuzzy matching and alert disposition.
Internal escalation, SAR decision-making, quality and regulatory reporting.
Staff training, records, management information and the wider compliance culture.
Our methodology
A typical audit runs over three to six weeks depending on scope and firm size.
Agree scope, risk focus and sample sizes; request documentation and data.
Assess policies, procedures and the risk assessment against the regulations.
Test real files and cases — onboarding, monitoring alerts, screening and SARs.
Grade each issue by risk and impact, with clear root-cause and evidence.
Agree a prioritised plan and, where needed, re-test once fixes are in place.
What you receive
A full report against the regulations and your policies.
Every issue graded high / medium / low with evidence.
A prioritised, practical plan with owners and timelines.
An executive summary the board and regulator can rely on.
Applies across
Request an independent AML audit and get a clear, risk-rated picture of your controls.