No cheat sheet, but this is my list:
Annual - Interest Rate Risk (IRR), Privacy, BSA, ACH, IT, Security, & Loan Review.
Quarterly - Bank must review correspondent banks as per Reg F. Not really audit's job, but someone has to do it.
All others are based on my risk assessment. Anything else I'm missing?
_________________________
You gain education by reading the fine print. You gain experience by not.