14INTERNAL AUDIT

The concept behind this module is that all the elements of an organisation that have some degree of risk management or control assessment in their terms of reference should be drawing data about risk and control from the same database. Internal Audit clearly falls into this category; they evaluate the control adequacy of various elements of the organisation and reflect this assessment in their reports and, when planning which elements of a diverse portfolio to schedule for Internal Audit review in the coming period, they take into account, amongst many other factors, the Control Environment of each unit

This module is designed to provide the Internal Auditor with a framework to hold all of the data needed to plan, manage and report on the work of the function. This framework will already be populated with the most up to date risk and control data relating to the audit portfolio. The module is split into logical functions:

•Planning;

•Scheduling;

•Execution;

•Testing Details;

•Reporting.