Garima Bikas Bank Audit Expression of Interest Notice

28th January 2026, Kathmandu

Garima Bikas Bank Limited, a prominent national level development bank in Nepal, has taken a significant step toward digital security by announcing a Garima Bikas Bank Audit Expression of Interest (EOI). Published on January 27, 2026, this notice invites eligible auditing firms and cybersecurity companies to submit proposals for a comprehensive Information System (IS) Audit for the fiscal year 2082/2083. As banking transitions heavily into the digital realm, such audits are no longer just regulatory formalities; they are essential for protecting institutional integrity and customer data.

Garima Bikas Bank Audit

The bank, headquartered at Das Tower in Lazimpat, Kathmandu, aims to identify a partner capable of evaluating its complex IT infrastructure, ensuring it remains resilient against evolving cyber threats while staying compliant with the stringent directives of Nepal Rastra Bank (NRB).

Why the Garima Bikas Bank Audit is Crucial for 2082/83

In the current financial landscape of Nepal, cyberattacks and data breaches have become a primary concern for the Nepal Rastra Bank and individual institutions alike. The Garima Bikas Bank Audit initiative is designed to address these challenges head on. By conducting a systematic review of its electronic data processing and digital transaction mechanisms, the bank ensures that its internal controls are robust enough to prevent unauthorized access and financial fraud.

Furthermore, this EOI emphasizes the bank’s proactive stance on IT governance. A well executed IS audit provides a clear roadmap for technology upgrades and risk mitigation, reinforcing the trust that thousands of depositors place in Garima Bikas Bank.

The Comprehensive Scope of Work

The scope of the Garima Bikas Bank Audit for the upcoming fiscal year is broad and technically demanding. It encompasses much more than a simple checklist of software versions. Interested firms must be prepared to conduct:

Information System (IS) Audit: A deep dive into the bank’s hardware, software, and networking protocols to ensure data integrity and system availability.

Vulnerability Assessment and Penetration Testing (VAPT): This is a critical component where ethical hackers simulate real world attacks on the bank’s mobile banking app, web portals, and internal servers to find and patch security gaps.

Transaction Verification: Utilizing Computer Assisted Audit Techniques (CAATs) to verify digital records and ensure that the audit trail is complete and tamper proof.

Compliance Review: Checking all IT operations against the NRB IT Guidelines and international standards like ISO 27001.

Detailed Eligibility and Mandatory Requirements

To ensure high quality outcomes, Garima Bikas Bank has set rigorous eligibility criteria for participating firms. This ensures that only the most capable and reputable cybersecurity professionals in Nepal handle their sensitive data.

Firm Experience and Credentials:

Minimum 5 Years Experience: The firm must have at least five years of established history in information systems audit or cybersecurity.

Advertisement

Banking Sector Expertise: Prior experience performing IS audits or VAPT for “A” or “B” class financial institutions in Nepal is highly preferred.

CEH Certification: The professionals conducting the VAPT must be Certified Ethical Hackers (CEH) or hold equivalent globally recognized credentials.

Tools and Standards:

Licensed Audit Tools: Only licensed and authorized tools can be used for the audit process to ensure the accuracy and legality of the findings.

Regulatory Standing: The firm must not be blacklisted by any regulatory body, including the Institute of Chartered Accountants of Nepal (ICAN).

The Submission and Evaluation Timeline

Firms interested in the Garima Bikas Bank Audit must act quickly. The Detailed Terms of Reference (TOR) can be collected from the Internal Audit Department at the bank’s head office in Lazimpat.

Key Dates to Remember:

First Publication Date: January 27, 2026.

Submission Deadline: Proposals must be submitted by the close of business on February 10, 2026.

The evaluation will be based on a combination of technical capability, professional profiles of the consulting team, and the firm’s historical performance in the banking sector. Only those who meet the strict benchmarks of the bank’s internal audit department will be shortlisted for the final selection.

Conclusion: Strengthening the Future of Digital Banking

The Garima Bikas Bank Audit Expression of Interest is a clear signal that the bank is prioritizing security in its journey toward total digital transformation. By inviting top tier audit firms to scrutinize its systems, Garima Bikas Bank is building a more secure and transparent financial environment for its customers. For eligible firms, this EOI represents a prestigious opportunity to partner with one of Nepal’s leading development banks and contribute to the national effort of securing the country’s financial infrastructure.

For More: Garima Bikas Bank Audit