Services

Internal Audit

Assure. Advise. Anticipate.

Deloitte’s Internal Audit (IA) services help companies look below the surface to achieve superior performance through a full range of outsourcing, co-sourcing, and advisory services—including with respect to technology and data analytics. Teaming with—or working as—a client’s IA function, Deloitte transforms these functions to achieve a high level of performance, assisting with enhancing process efficiency, fraud detection, operational quality, internal control, and regulatory compliance. We enhance the overall value delivered by IA functions through strengthening quality, flexibility, efficiency, and value. Additionally, Deloitte helps clients extend their IA oversight to gain greater understanding of key enterprise risks such as evolving IT systems, applications, and other technologies.

We offer:

  • Internal Audit Strategy, Effectiveness Advisory, and Review – We help organizations strengthen the effectiveness of their IA Function, including through transformational activities and strategy development or redesign.  We also perform independent effectiveness reviews of IA Functions, typically evaluating conformance with Institute of Internal Auditor (IIA) Standards, comparing IA’s practices against leading practices and assessing IA’s performance relative to stakeholder needs and expectations. 
  • Internal Audit Outsourcing and Co-Sourcing – We assist clients in the deployment of their IA capabilities, ranging from performing all of the organization’s IA activities through an outsourced model to partnering with the in-house IA function to co-source the delivery of their activities.
  • CEO/CFO Certification ICFR Testing – We help organizations understand and comply with their internal control certification requirements, whether scoping, developing and/or executing the organizations’ internal control certification programs. 
  • Information Technology Internal Audit – We serve as subject matter advisors—or as part of the outsourced/co-sourced IA function—to help organizations evaluate and address risks related to IT, including applications, networks and infrastructure.