This site uses cookies to provide you with a more responsive and personalised service. By using this site you agree to our use of cookies. Please read our cookie notice for more information on the cookies we use and how to delete or block them.

Bookmark Email Print this page

Internal audit & control solutions


Do you know what your business risks are? And are you comfortable that your risk management processes are maintaining your risks at an acceptable level? We can help you enhance your risk management capabilities by assessing the state of risk management within your organization. Using sophisticated diagnostic tools, we help identify and prioritize your business risks and create a common risk language of terms and definitions. We also work with you to determine appropriate risk management strategies and deploy enabling technology to better manage your risks. Our solutions include:

  • Internal audit. Overcome the common challenges of an internal audit function from staff turnover to a lack of specialized skills. We offer internal audit co-sourcing, resource enhancement, access to specialized skills or full outsourcing, depending on your needs. We can help improve your internal audit function by introducing risk-based process audit techniques, training and tools. And we can conduct an internal audit quality assessment to benchmark your function against leading practices or the Institute of Internal Auditors (IIA) standards. If you are establishing an internal audit function, we offer a “first 100 days” solution to help you develop a mission and charter, create a risk-based audit plan, assess your staffing model options and select the appropriate methodologies and technologies.
  • Contract risk and compliance. Ensure you receive the anticipated value from your strategic business relationships. We help you assess if your business partners are in compliance with your agreements by conducting contract risk assessments and contract compliance reviews around such issues as royalty payments, joint venture operating agreements, intellectual property and software licensing, construction audits and third-party controls.
  • CEO/CFO certification. Design, implement and enhance your internal control certification program. Using a top-down, risk-based approach, our internal control and risk specialists can help you achieve cost-effective compliance while realizing broader business benefits. Our proprietary CEO/CFO Certification Diagnostic allows our team to quickly assess your certification program, provide valuable feedback and suggest opportunities to improve overall efficiency and effectiveness.
  • Enterprise risk management. Evolve your organization’s risk management capabilities from a fragmented, ad hoc and reactive process to an integrated, systematic and enterprise-wide approach to become a Risk Intelligent Enterprise™, with the ability to effectively identify, assess and manage risk exposure.

Other services

Information & controls assurance Information & controls assurance
Our information & controls assurance practitioners mitigate the risks associated with your internal systems, business processes, projects, applications, data and third-party reliance.
Capital markets and regulatory consulting Capital markets and regulatory consulting
With more complex risks today than ever before, we offer a wide range of solutions to help organizations meet the pressures of key stakeholders (boards of directors, audit committees, regulators) by enhancing their capital market and regulatory management framework.
Data risk services Data risk services
Our data risk services offer a proven methodology for identifying, analyzing and quantifying data risks. By enhancing data quality, data accuracy, data governance and data analytics, organizations can transform their data from a corporate liability to a corporate asset.
Governance & risk Governance & risk
By benchmarking your governance practices against your peers, our governance solutions team can help you establish a competitive edge and gain the insights you need to align your executives’ expectations with your employees’ actions.
Security, privacy & resiliency Security, privacy & resiliency
To enhance the security, privacy and resiliency of your organization, you need to work with trained professionals. Globally, we have over 1,100 Certified Information Systems Security Professionals (CISSP) and more than 2,000 Certified Information Systems Auditors (CISA) and Certified Information Security Managers (CISM).
Technology risk governance Technology risk governance
Our multi-functional professionals have a strong global presence and experience across virtually every industry. We can help you strengthen your IT governance practices and enhance the effectiveness and efficiency of your technology projects.
Deloitte Learning Academy Deloitte Learning Academy
Our established relationships with the Information Systems Audit and Control Association (ISACA); the Institute of Internal Auditors (IIA); the Institute of Corporate Directors (ICD); and the (ISC)² Security Transcends Technology enable us to prepare you for a wide range of certification programs.

Featured insights

  • Adding insight to audit
    Transforming internal audit through data analytics
  • Managing the risks of social media
    Organizations must be positioned to quickly identify and capitalize on the emerging opportunities presented by social media while appropriately managing the associated risks.
  • Inside ISO 31000: 2009
    Learn about the key areas included in the ISO 31000 Risk Management Principles and Guidelines and how these differ from other risk management standards.
  • IFRS and certification of disclosure
    Learn key issues that are likely to arise with transition to IFRS and how we are designed to help CEOs and CFOs understand the impacts that IFRS will have on their certification program.
  • Helping management control their business
    Deloitte partner Neil Brown helps businesses strengthen their internal controls and processes







Questions? Need more information?

Contact us

Related insights

  • Sarbanes-Oxley Section 404
    A pragmatic approach