Internal Audit Strategic Plan .

How to develop your Internal Audit Strategic Plan through our Annual Planning process At the start of the year, we…

3 year strategic internal audit plan

My Audit Spot

Table of contents

What do we need to do in preparation for our internal audit strategic plan, so what information needs to go into our internal audit strategic plan.

How to develop your Internal Audit Strategic Plan through our Annual Planning process

3 year strategic internal audit plan

At the start of the year, we released our Guidance document on the Annual Planning process along with accompanying templates. You can visit our Guidance Hub for all the details on the Annual Planning process. Our Guidance document provides and overview of the end to end Annual Planning process, of which the Internal Audit Strategic Plan is one of the stages.

Throughout the Annual Planning process, we collect and gather a large amount of insight and details. All of this information will help inform both our Annual Plan and our Strategic Plan.

An Internal Audit Strategic Plan details the forward looking audit plan. It shows what audits are likely to be performed over the coming 3 to 5 years. It assists both management and the audit committee in understanding where risk lies within the organisation and internal audit is likely to use its resources to best cover the risk.

The strategic plan should also be aligned to the organisation’s strategy or objectives, whilst also preempting what future challenges the business may encounter. The document isn’t something which audit teams are wedded to, in fact, it should be reviewed and updated each year to ensure it still remain relevant and appropriate to the organisation.

In this post, we will step through what needs to be done to prepare for your Internal Audit Strategic Plan, what information should be included in it, and tips for communicating it to senior management and the audit committee.

Internal Audit end to end Annual Planning process

The end to end Annual Planning process.

We are currently at point 6 on the Annual Planning process diagram. To get to this point, we have considered our Internal Audit Charter and Internal Audit Strategy, reviewed our Audit Universe , understood and challenged the organisational strategy and any other external information , and have held multiple discussions with various stakeholders . Throughout all of this, we have collected a huge amount of information and updated our Audit Universe as we have progressed. With each update, the Audit Universe has begun to show us what are the more higher risk areas for the current year, what should be included in our plan for the current year, and what audits will likely form the plan over the coming years. All of this information will then feed into our Internal Audit Strategic Plan.

The opportunities are endless for what you may or may not want to include in the Internal Audit Strategic Plan. A couple of key rules to remember when compiling the Strategic Plan include:

  • Keep it simple – don’t bury the reader in too much detail
  • Tell the story – explain what the document is, what we did to get here, and the benefit to the organisation
  • Be engaging – make sure the plan captures the readers attention and tells them something new, not what they already know. Audit is to add value as well as provide assurance.

An overview of our Internal Audit Strategic Plan template is included below as a guide to how your plan can be laid out.

3 year strategic internal audit plan

This is only an extract of some pages from the template. To download an editable version of the Internal Audit Strategic Plan, please CLICK HERE .

As demonstrated in the template, we have told the story; explaining internal audits mission and objectives (which is extracted from the Internal Audit Strategic Plan), provided an overview of the planning process, and then detailed the strategic plan. The reader should be able to have a clear understanding of how we reached this conclusion.

The template uses a combination of both text and graphics. This is to not only keep the reader engaged, but to also help explain the process in a simple way without providing large amounts of text.

In addition to the above, you may wish to include some of following items in your strategic plan. Some of these are already included in this template, with other topics included in other templates such as the Annual Plan .

  • Overview of the audit universe;
  • List of previous audit activity;
  • Details of possible future risk areas and their inclusion in the strategic plan;
  • Overview of the audit team and current resourcing; and
  • Maturity map – showing where we are now and where we want the business to be with regards to governance and controls.

Maturity maps are always a tricky thing to apply, particularly is using at a higher level or when making an assessment over a large part of the business. However, stating the maturity of the organisation in the strategic plan and stating where audit would like this to be in the future, provides a great starting point when performing the internal audit annual assessment – the process whereby we assess the current status of governance and controls in the organisation.

Throughout this entire process, it is important the audit remains open to challenges on what the risk areas and challenges are within the business. It because of this, that adopting a transparent approach can assist in ensuring both management and the audit committee are on-board and have bought into the current strategic plan.

To download an editable version of the Internal Audit Strategic Plan, please CLICK HERE .

You are using an outdated browser. For a faster, safer browsing experience, upgrade for free today.

Practice Guide: Developing the Internal Audit Strategic Plan

3 Year Strategic Internal Audit Plan

Save, fill-In The Blanks, Print, Done!

3 Year Strategic Internal Audit Plan main image

Download 3 Year Strategic Internal Audit Plan

  • This Document Has Been Certified by a Professional
  • 100% customizable
  • This is a digital download (744.74 kB)
  • Language: English
  • We recommend downloading this file onto your computer.

Norton safe website

DISCLAIMER Nothing on this site shall be considered legal advice and no attorney-client relationship is established.

Leave a Reply. If you have any questions or remarks, feel free to post them below.

default user img

GDPR Compliance Templates

Related templates, checklist possible information systems strategies.

  • Internal Audit Report format
  • Sample Computer Engineering Student Resume
  • IT Computer Technician Job Description

image Checklist Possible Information Systems Strategies

Hardware Lease Agreement

image Project Status Summary Report Template

Project Status Summary Report Template

Latest templates.

  • Information Technology (IT) Audit Report
  • Conduit Fill Chart
  • Notice of Data Security Event Letter Template
  • Proposal for EU Funding ICT Platform day

Latest topics

  • GDPR Compliance Templates What do you need to become GDPR compliant? Are you looking for useful GDPR document templates to make you compliant? All these compliance documents will be available to download instantly...
  • Memo Format How to format a business memo or legal memo? What is the best way to make a simple memo template? In what format does a memo template appear?
  • Google Docs How to create documents in Google Docs? We provide Google Docs compatible template and these are the reasons why it's useful to work with Google Docs...
  • IT Security Standards Kit What are IT Security Standards? Check out our collection of this newly updated IT Security Kit Standard templates, including policies, controls, processes, checklists, procedures and other documents.
  • Cornell Notes What is Cornell note template? How do you structure Cornell notes? Check out these Cornell notes templates here.

People are best convinced by things they themselves discover. | Ben Franklin

zoom template image

ONLY TODAY!

COMMENTS

  1. PDF INTERNAL AUDIT STRATEGIC PLAN 2016-2021

    The 3-year rolling plan is developed with a focus on the identification of key risks facing UVic, as well as consideration of potential emerging risks that are likely to appear on the horizon over the 3-year audit plan cycle. This risk identification process includes: 1. Review of UVic's Strategic Plan to gain an understanding of ...

  2. Developing the Internal Audit Strategic Plan

    The internal audit strategy is fundamental to remaining relevant — playing an important role in achieving a balance between cost and value, while making meaningful contributions to the organization's overall governance, risk management, and internal controls.

  3. PDF DeveloPinG the internal auDit StrateGic Plan

    The following steps can be used to develop the internal audit strategic plan: Understand the relevant industry(ies) and the orga-nization's objectives. Consider the International Professional Practices Framework (IPPF). Understand stakeholder expectations. Update the internal audit vision and mission. Define the critical success factors.

  4. PDF Strategic and Annual Internal Audit Planning

    The Guidelines for the preparation of strategic and annual internal audit (IA) plan - purpose to improve the quality of IA strategic and annual planning system better connection of internal audit plans and internal audit work with objectives and priorities of the institutions and subordinated institutions (hereafter: institutions)

  5. Internal Audit Strategic Plan

    26 Mar 20 • My Audit Spot 4 mins How to develop your Internal Audit Strategic Plan through our Annual Planning process At the start of the year, we released our Guidance document on the Annual Planning process along with accompanying templates. You can visit our Guidance Hub for all the details on the Annual Planning process.

  6. PDF Internal audit strategic planning Making internal audit's vision a

    Further discus-sion of the objectives and tasks within each step follows. Figure 1. Internal audit's strategic planning process: phases and objectives. Develop mission and set vision. Understand organizational plans and assess needs. 3. 4. Perform a SWOT analysis to identify gaps. Define initiatives to fill gaps and develop a roadmap.

  7. Strengthening Internal Audit's Impact and Influence

    Heighten personal impact. Your personal impact as an internal audit leader will set the tone and impact stakeholders' perceptions of the function. And impact and influence don't just come from acquiring technical skills. They also result from strong communication, collaboration, leadership, and other interpersonal skills.

  8. Strategic Planning: A Roadmap for Internal Auditors

    Part 1: How vision and mission are ingrained in a strategic planning roadmap The strategic planning process is an activity that has existed for centuries. Businesses rely on strategic plans to ensure growth, connection with customers, value creation for stakeholders, and a future of sustainable success.

  9. PDF 123 Company Internal Audit Strategic Plan Example

    The YEAR Internal Audit Strategic Plan was executed using a four-step approach, as noted below and covered in detail on the following slides. Assess current environment Assess current environment against leading practice benchmarks and evaluate past performance Understand current and future internal audit trends Output: SWOT

  10. Your one-page Audit strategic plan template

    About Gartner Audit Strategy Template. Gartner Audit Strategic Planning Template helps audit leaders define the roadmap for executing the key actions required to meet audit strategic goals in alignment to the enterprise business model and goals. Additionally it helps you create and communicate a clear action plan that states where the audit ...

  11. Building a Better Auditor: Why Internal Audit Needs a Strategic Plan

    The risk-based internal audit plan and budget are, in fact, the operational plans for the internal audit function and are critical to its success. Both the risk-based plan and the strategic plan help internal audit reach maturity and become a strategic advisor to management and the board. If I can map out a future state for how the internal ...

  12. Practice Guide: Developing the Internal Audit Strategic Plan

    This Practice Guide, Developing the Internal Audit Strategic Plan, discusses critical steps necessary to develop a comprehensive internal audit strategic plan including: Understand the relevant industry (ies) & the organization's objectives. Consider the IPPF Standards and Guidance. Understand stakeholder expectations.

  13. PDF Internal Audit Plan: 2019/2020

    IA uses a three-year risk assessment model, with annual updates based on targeted interviews with management and the Board, to prioritize audit coverage and ensure timely reviews of high exposure areas along with sufficient campus-wide attention. IA performs three primary activities - audits, management advisory services, and investigations.

  14. PDF INTERNAL AUDIT STRATEGIC PLAN 2018/19

    The Strategic Internal Audit Plan 2018/19 to 2020/21 has been prepared in recognition of the responsibilities of the Chief Financial Officer under S.151 of the Local Government Act 1972 and...

  15. PDF Draft GMCA Internal Audit Strategic Plan 2021/22 2023/24

    This document sets out the three-year strategic internal audit plan and the proposed 2021/22 internal audit plan for GMCA. The planning process is based on Internal Audit's understanding of GMCA's current strategic and operational risks and as such is designed to provide assurance over key risk areas. 2. Approach Internal Audit services ...

  16. Implementing an Internal Audit Strategic Plan

    IMPLEMENTING AN INTERNAL AUDIT STRATEGIC PLAN. A component of The IIA's International Professional Practices Framework® (IPPF®), adopted in July 2015, is Internal Audit's Mission: "To enhance and protect organizational value by providing risk-based and objective assurance, advice, and insight.". Insights to Quality.

  17. PDF Internal Audit Department Strategic Plan

    STRATEGIC PLAN . Overview . Internal audit (IA), perhaps more than any other finance function, has adapted to meet the business challenges of a radically evolving business climate. The rapid shift to a global economy, the embrace of electronic communication and transaction processing, numerous financial scandals and the

  18. PDF THREE YEAR INTERNAL AUDIT PLAN

    THREE YEAR INTERNAL AUDIT PLAN Report from: Contact Officer: Wards Affected: Key Decision: Audit and Risk Manager Gillian Edwards Email@ [email protected] Tel:~(01444) 477241 All No Date of Meeting - 2nd March 2021 PURPOSE OF REPORT

  19. PDF Internal Audit Annual Plan 2022-23 & Strategic Plan 2022-25

    strategic plan for 2022 - 2025 shown from page 12. We will keep the programme under continuous review during the year and will introduce to the plan any significant areas of risk identified by management during that period. The plan is set within the context of a multi-year approach to internal audit planning, such that all areas of key risks ...

  20. PDF Strategic Risk Based Internal Audit Plan 2017-2020 and Annual Risk

    An understanding of Internal Audit's risk-based approach to developing its three year Strategic Plan (2017-2020) and The proposed Operational Plan for 2017-18. 1.2 BACKGROUND The Manager Internal Auditor (referred to under Standards as the Chief Audit Executive) is required by the Standard to:

  21. PDF Sheffield City Region Mayoral Combined Authority and South Yorkshire

    2. Group internal audit annual plan for 2020/21 5 3. Group internal audit strategic plan for 2020/21 to 2022/23 8 Appendices A. Changes made to 2020/21 reviews due to COVID-19 13 B. Changes to the internal audit strategic plan C. Our Internal Audit Charter Our Internal Audit Plan for 2020/21 has been prepared on the basis set out in your ...

  22. 3 Year Strategic Internal Audit Plan

    How to create a 3 Year Strategic Internal Audit Plan? Download this 3 Year Strategic Internal Audit Plan template now!

  23. PDF Developing a Risk-based Internal Audit Plan

    Ensuring this alignment is the essence of Standards 2010 - Planning, 2010.A1, 2010.A2, and 2010.C1, which task the chief audit executive (CAE) with the responsibility of developing a plan of internal audit engagements based on a risk assessment performed at least annually.

  24. Gartner Emerging Technologies and Trends Impact Radar for 2024

    Use this year's Gartner Emerging Tech Impact Radar to: ☑️Enhance your competitive edge in the smart world ☑️Prioritize prevalent and impactful GenAI use cases that already deliver real value to users ☑️Balance stimulating growth and mitigating risk ☑️Identify relevant emerging technologies that support your strategic product roadmap Explore all 30 technologies and trends: www ...

  25. Public Accounts Committee Sitting. || 20th February 2024

    Public Accounts Committee Sitting. || 20th February 2024