Financial Reporting

The Directors are responsible for ensuring that the annual audited financial statements of CIMB Group are drawn up in accordance with Malaysian Financial Reporting Standards, International Financial Reporting Standards, the requirements of the Companies Act, 2016, Bank Negara Malaysia’s Guidelines and the Listing Requirements of Bursa Malaysia Securities Berhad.


The Directors are also responsible for ensuring that the annual audited financial statements of CIMB Group are prepared with reasonable accuracy from the accounting records of the Group so as to give a true and fair view of the financial position of the Group as at 31 December 2019, and of their financial performance and cash flows for the financial year then ended.


The Directors consider that, in preparing the annual audited financial statements, CIMB Group have used appropriate accounting policies, consistently applied and supported by reasonable and prudent judgements and estimates, and ensured that all applicable approved accounting standards have been followed and confirm that the financial statements have been prepared on a going concern basis.


The Audit Committee reviews the quarterly and year-end financial results, audit plan, audit report, functions of Group Corporate Assurance Division (GCAD), status of major credit facilities granted, related party transactions, conflict of interest situations and independence of external auditors. Within three months of the close of the financial year, the Audit Committee submits a written confirmation to BNM that CIMB Group has complied with BNM’s requirements on financial reporting.


Based on the Audit Committee’s recommendation and confirmation, the Board is satisfied that it has met the obligation to present a balanced and understandable assessment of CIMB Group’s position and prospects in preparing the Financial Statements, reflected in the Directors’ Report.


Related Party Transactions

The terms and conduct of the Related Party Transactions (RPTs) must be in compliance with the relevant requirements of the Main Market Listing Requirements published by Bursa Malaysia and/or any applicable laws or regulations. All RPT are to be undertaken on terms that are fair and reasonable, not more favourable to the related parties than those generally available to the public or an unaffiliated third party under similiar circumstances and are not detriment/prejudicial to the interests of CIMB Group and/or CIMB's minority shareholders. Group Company Secretarial will facilitate to the review and approval process from the Audit Committee and the Board of Directors of CIMB Group Holdings Berhad (Board) before CIMB Group undertakes a RPT.


The Board and the Audit Committee to ensure that the Related Party Transaction is :


  1. in the best interest of CIMB Group;
  2. fair, reasonable and on normal commercial terms;and
  3. not detrimental to the interest of minority shareholders.



Internal Control

The Board is responsible for establishing a sound system of internal control and in determining CIMB Group’s level of risk tolerance as well as to continuously identify, assess and monitor key business risks to safeguard shareholders’ investments and CIMB Group’s assets. These functions are carried out by the Audit Committee and Board Risk Committee who are responsible for risk management functions, financial reporting, disclosures, regulatory compliance and internal control processes. To achieve this, the Board ensures that the business processes, risk management, policies and procedures, control mechanism are adequate and appropriate through periodic testing and assessment of the adequacy and effectiveness of the system of internal control.


The size, geographical presence and complexity of the business of CIMB Group as well as the dynamic operating environment require the Board to constantly review and monitor the effectiveness of its system of internal control. Regular self-testing and high level risk assessment are conducted followed by review and update on a real-time basis. CIMB Group had during the year under review, invested considerable time in areas of financial reporting systems and business processes including data integrity.


Based on the review undertaken throughout the year, the Board concluded that CIMB Group’s system of internal control is adequate in meeting its changing needs and regulatory requirements.



Relationship with Internal and External Auditors

The Group Internal Audit Division (GIAD) performs the internal audit function and conducts regular audits on the risk management, internal control and governance processes implemented by Management and reports significant findings to the Audit Committee with recommended corrective actions. Management is responsible to ensure that corrective actions on reported weaknesses are executed within an appropriate time frame.


GIAD also assists the Board in overseeing that Management has in place a sound risk management, internal control and governance system. The internal audit function is reviewed periodically by the Audit Committee to ensure its adequacy and competency in performing its role.


GIAD works closely with CIMB Group’s External Auditors on audit and internal control issues. The External Auditors review the effectiveness of CIMB Group’s internal controls and risk management during the audit exercise. Any material non-compliance with procedures and regulations noted during the audit, as well as any internal control weaknesses, are reported together with the recommendations by the External Auditors to the Audit Committee and Management for Management’s consideration and action. The Audit Committee ensures that high risk audit issues are given top priority for Management’s action.


The Board and the Audit Committee maintain a formal and appropriate relationship with the External Auditors. For the period under review, the Audit Committee had two meetings with the External Auditors without the presence of Management. This has encouraged a greater exchange of independent, open view and opinions/dialogue between both parties. Apart from that, the External Auditors are also invited to attend CIMB Group’s meetings such as Audit Committee meetings (where appropriate) and Annual General Meetings. The Audit Committee reviews the independence of External Auditors annually and ensures that provision of other non-audit services by the External Auditors is not in conflict with their audit function. The Audit Committee also ensures that there is a rotation of the Engagement Partner and the Concurring Partner of the External Auditors at least once every five years.


CIMB Group has established a framework for the appointment/re-appointment of External Auditors, which is in line with BNM/RH/GL 001-1 and Guidelines for the Appointment/ Reappointment of External Auditors by Banking Institutions, which require the Audit Committee to assess the independence, objectivity and performance of External Auditors. The assessment also facilitates BNM in processing CIMB Group’s application for appointment/ re-appointment of External Auditors.


The framework contains detailed procedures to assess the independence and service level of the External Auditors, which amongst others, include reviewing the External Auditors’ performance and quality of work, timeliness of service deliverables, non-audit services provided and the Engagement Partner’s and the Concurring Partner’s rotation. The External Auditors’ service level is rated based on respondent’s satisfaction with their service as CIMB Group’s External Auditor. An Assessment Questionnaire is issued to selected personnel across the Group who have a working relationship with the External Auditors, who are then requested to review the service level of the External Auditors and confirm that the External Auditors have a reasonable understanding of CIMB Group’s business and are able to support CIMB Group from an accounting standpoint.