Pay Online and Earn Your FREE Hotel Stay in Dubai. See eligible courses here.

Internal Audit and Controls

Video preview
No available sessions at this moment.
Get in touch with our Training Advisior to find out about the next available sessions.
DownloadDownload Brochure

Course Overview

Our five-day Internal Audit & Control program has been designed to provide participants with a holistic overview as to all the key elements that they will encounter as Internal Audit practitioners. This program has been carefully designed to provide every key process within the internal audit cycle with sufficient detail and diligence whereby participants will finish this course with a detailed understanding of the internal audit methodology aligned with a sound understanding of related internal control frameworks. The program has been designed to be fully compliance with the Institute of Internal Audit standards. The program has been divided into the following key modules:
→ Recent trends in Internal Audit
→ The International Professional Practices Framework (IPPF)
→ The Quality Assurance & Improvement Program (QAIP)
→ The Internal Audit Methodology
• Risk Assessment & Internal Audit Planning
•Business Process Understanding & Development of Audit Program
•Executing the Audit Program
•Developing the Internal Audit Report and Conducting the Closing Meeting

Key Takeaways

Learn how to compare and contrast the COSO Internal Control and ERM frameworks.
Develop the level of knowledge of the COSO Internal Control Framework needed to carry out internal audit roles and responsibilities.
Develop the skills needed to use COSO principles and practices to perform the work on audit engagements.
Learn how to demonstrate the use of COSO principles and practices in overall and audit engagement planning

National Association of State Boards of Accountancy
Brand Logo
LEORON Professional Development Institute DMCC is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website:

Course Outline

Part 1
Recent Trends in Internal Audit

As the third line of defense, the internal audit function is critical in overseeing an organization's governance framework and has evolved into a strategic partner to the Board of Directors. This program aims to deepen understanding of internal audit's expanding role, which now includes areas like culture and strategy audits, and to clarify its value to stakeholders. The outline below details this part's focus.
•Internal Audit & Artificial Intelligence
•Data analytics to add value
•The evolving nature of the Internal Audit Profession
•Auditing Governance, Strategy & Culture -The cornerstone of value add
•Internal Audit Positioning in the GRC Landscape
•The Internal Audit Definition
•Measuring internal audit value – key challenges
•Personal Traits of a Successful Internal Auditor
•The consultancy landscape
•The role of Internal Audit in Fraud Detection & Investigation
•Engaging the Board Audit Committee through effective reporting
•Internal Audit Key Performance Indicators
•Using Internal Audit Software to Manage the Internal Audit Function

Part 2
The International Professional Practices Framework (IPPF) & The Quality Assurance & Improvement Program (QAIP)

This program trains participants on designing and implementing a Quality Assurance & Improvement Program (QAIP) within internal audit activities, starting with an in-depth look at the International Professional Practices Framework (IPPF) focused on Standard 1300 related to QAIP.
•Code of Ethics
•Attribute Standards
•Performance Standards
•Assurance & Consulting Services
•Implementation Standards
•Practice Advisories
•QAIP Scope
•Evaluation of Conformance
•Appraisal of Audit Function Effectiveness & Efficiency
•Continuous Improvement & Value Add
•Board of Directors Involvement

Part 3
Risk Assessment & Internal Audit Planning

This part covers the initial phase of internal audit methodology, teaching participants to perform organizational risk assessments for audit planning using tools like PESTEL and SWOT analysis to identify key vulnerabilities.
Applicable IIA Standards
•2000 – Managing the Internal Audit Activity
•2010 – Planning
•2020 – Communication and Approval
•2030 – Resource Management
•2040 – Policies and Procedures Key Topics
•Key concepts and elements of internal audit.
•Macro Vs. Micro level risk assessment.
•High-level risk management concepts.
•Key objectives of internal control.
•Components of the COSO Framework.
•Role of Internal Audit in Corporate Governance.
Risk Assessment & Internal Audit Planning
•Objectives of the risk assessment process.
•Different types of risk assessment methodologies.
•The objective of internal audit planning.
•Resource allocation

Part 4
Business Process Understanding

Our internal audit courses emphasize the crucial message: “A flawed process understanding results in a flawed internal audit review.” Many auditors often skip in-depth process understanding and jump straight to testing internal controls, a practice that can lead to severe implications, such as:
•Key controls going undetected and therefore untested.
•Key control design deficiencies going unnoticed
•Not identifying unmitigated process risks
•Missing out on essential opportunities for data analytics
•Identify areas for significant process improvement and enhance their understanding. It includes the final steps of the audit methodology, focusing on effective communication and audit reporting skills. This part features a detailed outline and a case study on the procurement process.

Applicable IIA Standards

•1120 – Individual Objectivity
•1200 – Proficiency & Due Professional Care
•2200 – Engagement Planning
•2201 – Planning Considerations
•2210 – Engagement Objectives
•2220 – Engagement Scope
•2230 – Engagement Resource Allocation
•2240 – Engagement Work Program
•2300 – Performing the Engagement
•2310 – Identifying Information
•Key challenges faced during the process understanding
•Key objectives behind the process understanding

Planning for the Understanding

•Obtaining Documentation & Information
•Analysing information
•Checking previous and other internal control reports
•Industry analysis and research
•Obtaining an understanding of the system functionality
•Understanding user profiles
•Obtaining process Key Performance Indicator

Executing the Understanding

•Conducing the Business Understanding meeting
•Identifying control design deficiencies
•Understanding is not internal control testing
•Identifying process risks
•Identifying process controls
•Address audit issues during this exercise
•Conducing the Process Walkthrough
• Difference between the Understanding Meeting and the Process Walkthrough
•Identifying areas that can be subject to data analytics
•Identifying unsegregated duties
•Identifying automated controls
•Confirming your Understanding & Walkthrough
•Preparing the Risk & Control Matrix

Part 5
Internal Audit Report Writing

•Applicable Internal Audit Standards
1. 2400 – Communicating Results
2. 2410 – Criteria for Communicating
3. 2420 – Quality of Communications
4. 2421 – Errors and Omissions
5. 2430 – Use of “Conducted in Conformance with the •International Standards for the Professional Practice of Internal Auditing”
1. 2431 – Engagement Disclosure of Nonconformance
2. 2440 – Disseminating Results
3. 2450 – Overall Opinions
•Internal Audit Report Writing
1. The Importance of the Internal Audit Report as the Departments Final Product
2. Understanding your audience
3. Report Content & Structure
4. Effective internal audit execution resulting in high quality internal audit reports
5. Internal Audit Report Content & Structure
6. Report Issuance Standards
7. Different Writing Styles
8. The Executive Summary – A Key Dimension of Successful Writing
9. Drafting a concise, clear and constructive internal audit observation.
10. Drafting an actionable internal audit recommendation
11. Using tables, graphs and charts as part of the internal audit report.
12. An image can say 1000 words
13. The tone of your Internal Audit Report
14. The Organized thought-process

Who Should Attend?

This highly practical and interactive course has been specifically designed for

 Chief audit executives




Audit managers

Audit staff

Risk management staff

Related Courses


What language will the course be taught in and what level of English do I need to take part in an LEORON training program?
Most of our public courses are delivered in English language. You need to be proficient in English to be able to fully participate in the workshop and network with other delegates. For in-house courses we have the capability to train in Arabic, Dutch, German and Portuguese.
Are LEORON Public courses certified by an official body/organization?
LEORON Institute partners with 20+ international bodies and associations.We also award continuing professional development credits (CPE/PDUs) for:1. NASBA (National Association of State Boards of Accountancy) 2. Project Management Institute PDUs 3. CISI credits 4. GARP credits 5. HRCI recertification credits 6. SHRM recertification credits
What is the deadline for registering to a public course?
The deadline to register for a public course is 14 days before the course starts. Kindly note that occasionally we do accept late registrations as well, but this needs to be confirmed with the project manager of the training program or with our registration desk that can be reached at +1071 4 1075 5711 or [email protected].
What does the course fee cover?
The course fee covers a premium training experience in a 5-star hotel, learning materials, lunches & refreshments, and for some courses, the certification fee and membership with the accrediting bodies.
Does LEORON give discounts?
Yes, we can provide discounts for group bookings. If you would like to discuss a discount on a corporate level, we will be happy to talk to you.