Internal Audit

Assure. Advise. Anticipate.

Deloitte’s Internal Audit (IA) services help companies look below the surface to achieve superior performance through a full range of outsourcing, co-sourcing, and advisory services—including with respect to technology and data analytics. Teaming with—or working as—a client’s IA function, Deloitte transforms these functions to achieve a high level of performance, assisting with enhancing process efficiency, fraud detection, operational quality, internal control, and regulatory compliance. We enhance the overall value delivered by IA functions through strengthening quality, flexibility, efficiency, and value. Additionally, Deloitte helps clients extend their IA oversight to gain greater understanding of key enterprise risks such as evolving IT systems, applications, and other technologies.

We offer:

  • Internal Audit Strategy, Effectiveness Advisory, and Review – We help organizations strengthen the effectiveness of their IA Function, including through transformational activities and strategy development or redesign.  We also perform independent effectiveness reviews of IA Functions, typically evaluating conformance with Institute of Internal Auditor (IIA) Standards, comparing IA’s practices against leading practices and assessing IA’s performance relative to stakeholder needs and expectations. 
  • Internal Audit Outsourcing and Co-Sourcing – We assist clients in the deployment of their IA capabilities, ranging from performing all of the organization’s IA activities through an outsourced model to partnering with the in-house IA function to co-source the delivery of their activities.
  • CEO/CFO Certification ICFR Testing – We help organizations understand and comply with their internal control certification requirements, whether scoping, developing and/or executing the organizations’ internal control certification programs. 
  • Information Technology Internal Audit – We serve as subject matter advisors—or as part of the outsourced/co-sourced IA function—to help organizations evaluate and address risks related to IT, including applications, networks and infrastructure.

Internal audit insights: High impact areas of focus 2017

In this edition of our annual Internal Audit Insights series, we identify eleven current “high impact” opportunities for IA functions to enhance the value they deliver to their organizations. The paper also explains why these areas are important to stakeholders and how Internal Audit might approach the area in upcoming audit plans. Areas of focus include strategic planning, third-party management, analytics, integrated risk assurance, cyber, digitalization, risk culture, and more.

Nine ways to strengthen Internal Audit’s impact and influence in the organization

Among the most shocking findings of Deloitte's 2016 Global Chief Audit Executive Survey is Internal Audit's lack of impact and influence within the organization. Only 28 percent of Chief Audit Executives (CAEs) believe their functions have strong impact and influence in their organizations, while 16 percent felt that Internal Audit has little to none. Yet almost two‑thirds of CAEs believe it will be important for Internal Audit to have strong impact and influence in the coming years. We believe that the disparity between current and needed impact and influence must be addressed for the good of Internal Audit, its stakeholders, and the organization.

Becoming agile – A guide to elevating Internal Audit’s performance and value 

From their origins in software development, agile methods have been effective in countless initiatives in various business settings. ‘Becoming agile’ is a three-part series that presents Deloitte’s methodology for applying agile principles and practices to internal auditing as we help organizations lead, navigate, and disrupt to accelerate performance. An Agile Internal Audit approach can help the Internal Audit function elevate its value to the organization and its delivery of assurance, advisory, and risk anticipation services.