Skip to main content
Research:
Research
04 Sep 2025
5 minute read

Financial services | Internal audit planning priorities 2026

Navigate uncertainty: future-proofing financial services

Deloitte financial services internal audit planning priorities 2026
Download PDF (3MB) View PDF

Welcome to Deloitte’s Financial Services planning priorities for internal audit for 2025.

As we launch the 10th edition of this publication, we recognise the pivotal role internal audit continues to play. Internal audit is the backbone supporting organisations on their journey forward, acting as a strategic partner and providing insight and innovation for organisations to thrive today and in the future.

The Financial Services landscape in 2024 continues to be driven by increasing regulation, which is impacting many firms’ cost-base due to the need for more robust and well controlled processes. This is compounded by wider economic volatility stemming from ongoing global conflicts, a higher interest rate environment and elections taking place across 70 countries worldwide, including in the UK.

Despite the uncertainty this brings, the role of internal audit as a strategic partner remains unchanged, and many of the key topics for functions to consider today are common with those highlighted in the first edition of this publication in 2014, including model risk management, third party risk management and financial crime. This is perhaps unsurprising given that regulatory focus remain largely the same, centred on prudential stability, good customer outcomes and the reduction and prevention of financial crime.

Whilst similarities remain, internal audit functions must continue to evolve to keep pace with change, not just in terms of what they audit but how they audit. Generative AI (GenAI) in particular presents huge opportunities with a significant increase in the number of use cases emerging across the last 12 months, both in terms of how firms use GenAI, as well as how functions can benefit from it.

For the second year, we have a section dedicated to environmental, social, and governance (ESG). With notable increases in the quantity, quality and breadth of reporting and disclosures due over this and coming years, driven by regulations such as the Corporate Sustainability Reporting Directive (CSRD), ESG continues to be a focus area. Regulation aside, firms should be mindful of the strategic decisions required to effect change as well as report accurately.

The focus on financial crime, conduct risk and digital risk continues. There are also a number of new focus areas to consider including in annual audit plans. An increase in the volume and quantity of financial penalties resulting from failures to correctly identify off-payroll workers has brought employment taxes into focus. Regulators are also focusing on motor finance discretionary commission, which has also been included.

Navigate to the sectors below most relevant to you and your organisation for an overview and suggested actions on a range of priorities for 2025. These are intended to provide a useful reference point from which to drive conversations and ultimately help define internal audit plans.

We hope you find the topics useful and if you would like to discuss anything further, please get in touch.

 

Welcome to Deloitte’s financial services planning priorities for internal audit for 2026.

The financial services industry faces unprecedented challenges. Geopolitical instability, rapid technological advancements, and a shifting regulatory landscape demand resilience and proactive planning. In this 11th edition of the report, we delve into a number of topics of focus for internal audit, however, three key areas demand immediate attention.

1. Remain resilient: a new frontier for assurance

Global tensions are reshaping supply chains and influencing market and financial risks. Understanding and mitigating geopolitical risk is no longer optional; it's crucial for cross-departmental collaboration and organisational survival. Internal audit's role expands significantly, enabling organisations to navigate this complex and evolving threat to stay resilient

2. The rise of generative AI (GenAI): responsible innovation for growth

The integration of emerging technologies, particularly GenAI and agentic AI, presents both opportunities and risks. Responsible technology adoption is paramount for sustainable growth. The accelerating pace of AI regulation necessitates enhanced technology-related assurance, and internal audit must adapt to leverage AI for greater efficiency and strategic evaluation. Prepare for real-time reporting and the transformation of internal audit roles and skillsets.

3. Evolving regulations: adapting to a dynamic environment

Differing regulatory approaches globally create diverse competitive landscapes. Deregulation in some regions might increase risk-taking, while emerging industries and converging sectors introduce further regulatory complexity.   Internal audit professionals must develop new specialisms to address these evolving challenges, adapting workflows and reporting mechanisms to stay ahead of the curve.

Download the full report now to delve deeper into these critical areas and discover how to build a resilient and future-ready financial services organisation.

Did you find this useful?

Yes
No

Thanks for your feedback

Your feedback is important to us

To tell us what you think, please update your settings to accept analytics and performance cookies.

Need help updating cookies?

Get in touch

Aaron Oxborough

Aaron Oxborough

Partner
+44 (0)20 7007 7756
Russell Davis

Russell Davis

Partner
+44 (0)20 7007 6755
Matt Cheetham

Matt Cheetham

Partner
+44 (0)77 6656 6960
Mahmood Zaman

Mahmood Zaman

Director
+44 20 7007 0362
Marc McNulty

Marc McNulty

Partner
+44 (0)78 2798 6315

Our thinking

South and Wales Mergers and Acquisitions | Deloitte UK

Relationships and local market knowledge underpin insightful advice
Research

Financial sustainability and good governance: The potential impact of an Independent Regulator to the English football system | Deloitte UK

English football has some inherent complexities and is subject to the challenges of the macro-economic, societal and football environments. Having core structures in place, alongside good governance principles, is critical for football clubs to navigate this challenging environment
Perspective

The Next Signing for Transformation in Football – Investing in Data | Deloitte UK

Football clubs and leagues that optimise data management and activation will be well placed to grow and diversify revenue streams, appeal to the next generation of fans and navigate a changing regulatory environment.
Perspective

Football M&A: The increasing importance of environmental, social and governance factors | Deloitte UK

Investors are placing greater significance on financially sustainable ownership and are increasingly considering the environmental, social and governance profile of their target business, in the context of football transactions.
Perspective
Explore our thinking