Internal Audit Services

Assure. Advise. Anticipate.

The Internal Audit (IA) function is delivering on a broader set of expectations while strengthening its impact and influence. Through innovative methods, advanced analytics, and labs, our Internal Audit services help IA departments not only deliver assurance, but also advise on critical business issues and anticipate risks.

IT internal audit

Our IT Internal Audit services professionals offer solutions to help clients extend their internal audit oversight and performance, addressing IT risks as well as broader organization-wide business risks, such as cybersecurity.

Through a cybersecurity assessment framework built upon Deloitte’s recommended Secure.Vigilant.Resilient.TM concept, we are assisting Internal Audit functions with providing an objective assessment of existing and needed controls. We are also helping audit committees and boards recognize and address the diverse risks of the digital world. Stay one step ahead with a cyber risk management examination.

Explore our view of internal audit’s role in cyber.

Back to top

split eye image

Digital internal audit

Technological advances and trends in advanced analytics, robotic process automation, and cognitive intelligence are rapidly reshaping business models, improving productivity, and enabling innovation in the way organizations operate and conduct business. We help IA departments assess and understand the new opportunities associated with these technologies so they remain proactive in advising senior management on preventing and detecting new and emerging risks.

Learn more about insights-driven auditing.

Back to top


In a full outsourcing arrangement, Deloitte serves as the IA function. Deloitte’s Internal Audit services professionals help provide organizations with a greater level of assurance. We also offer insights and recommendations on business strategy execution and the redeployment of valuable resources toward achieving strategic goals and objectives.

In a cosourcing arrangement, we assist clients in building upon existing strengths while improving overall value. The client maintains control and responsibility for the day-to-day function while Deloitte provides “on-demand” advice, leading practices, and experienced professionals with industry and specialized business and/or technical capabilities. 

Back to top


As a leading provider of Sarbanes-Oxley (SOX) services, we have a broad view of requirements—from the initial top-down risk assessment, scoping, and planning to practice documentation, testing, and assessment of design and operating effectiveness through the timely reporting and evaluation of results.

We use an innovative and proactive approach that incorporates the right tools and techniques to help you deploy the solutions that are right for you. And the models we leverage enable you to properly focus on gaining the necessary efficiencies and effectiveness in the SOX program.

Explore the benefits of a proactive system for internal controls.

Back to top

Agile Internal Audit

We help clients apply agile methodology to internal auditing. By taking an iterative, time-boxed approach, agile methods support a collaborative environment for audit and the organization, enabling them to solve business problems with speed.

Learn more about Agile Internal Audit.

Back to top

Pre-IPO internal audit

Increasingly, fast-growing private companies are realizing the value of the Internal Audit function prior to entering public markets. In a rapidly evolving business environment, we advise on anticipated changes that come with public market entry and assist clients in building controls and processes from the ground up.

Furthermore, our Internal Audit services team works to identify regulatory, compliance, and strategic risks that may inhibit the velocity of growth and long-term viability of the organization. Speed and iteration are crucial. And through the adoption of our Agile Internal Audit methodology, we move with the speed of our fastest moving clients.

Back to top

split propeller

Strategy, assessments, innovation, and transformation

We work closely with internal audit functions to assist them with:

  • Assessing alignment to their business structure, risk profile, and The Institute of Internal Auditors' standards
  • Identifying strategic orientation
  • Detecting and mitigating risks to assist in the execution of their corporate strategies
  • Keeping abreast of leading practices and emerging trends
  • Benchmarking data

Our leading-class capabilities and insights allow us to help clients evaluate, innovate, and elevate their IA functions to higher performance.

Back to top

About Deloitte Risk & Financial Advisory

Deloitte Risk & Financial Advisory helps organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage.

We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries.

Explore our priority markets:

Back to top

Deloitte Risk & Financial Advisory

Contact us today

Get in touch

Sandy Pundmann

Sandy Pundmann

Partner | Deloitte Risk & Financial Advisory

As a Risk and Financial Advisory partner with Deloitte & Touche LLP, Sandy leads the US Internal Audit practice. She works with CEOs, chief risk officers, chief audit executives, and compliance office... More

Insert Custom CSS fragment. Do not delete! This box/component contains code needed on this page. This message will not be visible when page is activated.