Fundamentals of Risk-Based Internal Auditing

Modern organisations operate in environments filled with uncertainty, regulatory pressure, and increasing expectations for accountability. Traditional auditing is no longer sufficient on its own — organisations now require a risk-focused approach that ensures controls, processes, and decisions directly support strategic objectives.

The Fundamentals of Risk-Based Internal Auditing course provides a structured introduction to risk-based auditing practices used worldwide. Over five comprehensive days, participants will explore key concepts such as risk, internal controls, risk management frameworks, audit planning, control evaluation, and communicating audit outcomes with clarity and impact.

This programme blends global best practices with practical tools, exercises, and case-based discussion to help auditors shift from compliance-driven reviews to value-adding, risk-informed assurance activities.

By the end of the course, you will be able to:

• Understand risk-based auditing principles aligned with international standards
• Apply major risk management frameworks such as COSO and ISO 31000
• Conduct risk assessments using likelihood, impact, appetite, and tolerance criteria
• Develop effective risk-based audit plans and engagement approaches
• Evaluate the design and effectiveness of preventive, detective, and corrective controls
• Communicate audit findings clearly and constructively to stakeholders
• Overcome practical challenges linked to reporting, change implementation, and audit acceptance

This programme equips participants with the mindset and skills required to support organisational resilience through effective, risk-driven internal auditing.