The 5 steps of the internal audit process are planning, preparation (or scoping), fieldwork (execution), reporting, and follow-up. This cycle enables organizations to evaluate risk management, strengthen internal controls, and ensure compliance with policies or standards.
What happens during an audit? Internal audit conducts assurance audits through a five-phase process which includes selection, planning, conducting fieldwork, reporting results, and following up on corrective action plans.
5 components of internal controls: What they are and why they're important
Current best practices, such as the 5 Cs framework (Criteria, Condition, Cause, Consequence, and Corrective Action), ensure that audits provide actionable insights rather than simple observations.
Here are the 9 steps to conduct an internal audit:
The “5 P's of Internal Audit” includes 5 video-clips presenting testimonials from audit managers on the topics of Plan, Perform, People, Profile and Product.
The 7 steps in the audit process generally cover Planning, Risk Assessment, Internal Control Testing, Fieldwork/Evidence Collection, Reporting, and Follow-Up, focusing on a systematic review from initial engagement to ensuring corrective actions are taken for operational improvement. This framework ensures comprehensive evaluation, from understanding the client's business to delivering actionable insights and ensuring accountability for identified issues.
Types of Internal audits include compliance audits, operational audits, financial audits, and an information technology audits.
5S is a five-step methodology that creates a more organized and productive workspace. In English, the 5S's are: Sort, Straighten, Shine, Standardize, and Sustain. 5S serves as a foundation for deploying more advanced lean production tools and processes.
ACL Analytics (Galvanize, now part of Diligent) is one of the most popular tools. It is specifically designed for audit professionals and enables users to analyse 100% of the data, identify patterns, anomalies, and issues in financial and operational data.
The principles of independence, objectivity, competence, confidentiality, professionalism, due professional care, and continuous improvement are essential for the internal audit function to fulfill its role as a trusted advisor to the organization.
Types of audit
What are audit procedures?
Big Five
An ISO audit is a systematic process for obtaining audit evidence and evaluating it objectively to determine the extent to which audit criteria are met.
The 5 Cs of audit (Criteria, Condition, Cause, Consequence, Corrective Action) are a framework for structuring clear, actionable audit findings, explaining what should be (Criteria), what is found (Condition), why it happened (Cause), what the impact is (Consequence/Effect), and how to fix it (Corrective Action/Recommendation) to drive organizational improvement and compliance.
In industry, 1S, 2S, 3S, 4S, 5S refers to the 5S methodology, a lean management system for organizing workspaces to boost efficiency, safety, and quality, with each "S" representing a Japanese principle: Sort (Seiri), Set in Order (Seiton), Shine (Seiso), Standardize (Seiketsu), and Sustain (Shitsuke). It creates a clean, uncluttered, and well-organized environment where everything has a place, reducing waste and improving workflow.
A 5S audit checklist is a structured tool used to evaluate and assess a workspace's adherence to the principles of 5S: Sort, Set in Order, Shine, Standardize, and Sustain.
Type 2 audits assess both design and operating effectiveness over a set period, typically three to 12 months, showing that controls work in practice.
7 Elements of Audit Report
The inspection report template includes 7 parts elements these are: report title, introductory Paragraph, scope paragraph, executive summary, opinion paragraph, auditor's name, and auditor's signature.
The Internal Audit Services (IAS) is mandated to conduct a separate evaluation or appraisal of internal control system to determine whether controls are well designed and properly implemented.
The 6 key phases of an internal audit process are: Planning, Preliminary Investigation, Implementation, Quality Assurance, Reporting, and Follow-Up. Each phase includes steps like defining audit procedures, analyzing the audit object, verifying facts, and reviewing outcomes to ensure compliance and improvement.
An audit checklist may be a document or tool that to facilitate an audit programme which contains documented information such as the scope of the audit, evidence collection, audit tests and methods, analysis of the results as well as the conclusion and follow up actions such as corrective and preventive actions.
Audit Procedure Methods