Skip to main content

Internal Audit

Assure. Advise. Anticipate. Accelerate


Deloitte’s Internal Audit (IA) services help companies look below the surface to achieve superior performance through a full range of outsourcing, co-sourcing, and advisory services—including with respect to technology and data analytics. Teaming with—or working as—a client’s IA function, Deloitte transforms these functions to achieve a high level of performance, assisting with enhancing process efficiency, fraud detection, operational quality, internal control and regulatory compliance. We enhance the overall value delivered by IA functions through strengthening quality, flexibility, efficiency and value. Additionally, Deloitte helps clients extend their IA oversight to gain greater understanding of key enterprise risks such as evolving IT systems, applications and other technologies.


We offer:

  • Internal Audit Strategy, Effectiveness Advisory and Review – We help organisations strengthen the effectiveness of their IA Function, including through transformational activities and strategy development or redesign.  We also perform independent effectiveness reviews of IA Functions, typically evaluating conformance with Institute of Internal Auditor (IIA) Standards, comparing IA’s practices against leading practices and assessing IA’s performance relative to stakeholder needs and expectations. 
  • Internal Audit Outsourcing and Co-Sourcing – We assist clients in the deployment of their IA capabilities, ranging from performing all of the organisation’s IA activities through an outsourced model to partnering with the in-house IA function to co-source the delivery of their activities.
  • CEO/CFO Certification ICFR Testing – We help organisations understand and comply with their internal control certification requirements, whether scoping, developing and/or executing the organisations’ internal control certification programmes. 
  • Information Technology Internal Audit – We serve as subject matter advisers—or as part of the outsourced/co-sourced IA function—to help organisations evaluate and address risks related to IT, including applications, networks and infrastructure.