Training Course: Advanced Audit - Risk Management

The need to manage risks is increasingly recognized as essential to effective corporate governance!

REF: QM321621

DATES: 22 - 26 Dec 2025

CITY: Malaga (Spain)

FEE: 4400 £

All Dates & Locations

Introduction

The need to manage risks is increasingly recognized as essential to effective corporate governance and to maintain an effective system of internal control. Internal audit plays a key role in providing assurance that risks to the organization are properly managed. Risk-based auditing links internal audit to an organization’s overall risk management framework.

This course provides participants with the knowledge to develop an audit universe and risk-based internal audit plan. This course also addresses emerging and advanced risk management topics such as governance risk, strategic risk, fraud risk, information technology risk, and auditing the risk management process. 

This course is designed for senior internal audit practitioners and audit managers who want to build on their knowledge and increase their value to the organization by developing effective risk-based audit plans that address emerging risks.

Course Objectives

  • Identify corporate governance principles.
  • Explain the relationship between governance principles and COSO frameworks.
  • Explain the relationship between governance, risk and control.
  • Identify strategy risk audits.
  • Identify the strategy process audits.
  • Identify types of fraud.
  • Examine an anti-fraud program and the role of risk assessment.
  • Identify IT risk assessment frameworks.
  • Discuss cybersecurity, information security, and information technology (IT) governance risks.
  • Assess enterprise risk management process risks.
  • Apply enterprise risk management maturity and comprehensive assessment approaches.
  • Develop an auditable universe risk assessment.
  • Apply risk identification, measurement, and prioritization techniques.

Course Outlines

Day 1: Risk Management Principles and Concepts

  • Risk definitions.
  • Risk management definitions.
  • Major control and risk frameworks.
  • Risk management assessment criteria.

Corporate Governance Risk

  • Overview, definition, and standards.
  • Relationship between governance, risk, and control.
  • Governance breakdowns.
  • Corporate governance principles.
  • Governance principles and COSO frameworks.
  • Audit activities and approach.

Day 2: Strategic Risk

  • Strategy Overview.
  • Definition of strategic risk.
  • Internal audit’s consideration of strategic risk.
  • Strategy-related audit.
  • Strategy risk audits.
  • Strategy process audits.

Fraud Risk Assessment

  • Definition and principles.
  • Standards and guidelines.
  • Anti-fraud program.
  • Role of internal audit.
  • Internal audit approach.
  • Types of fraud.
  • The fraud triangle.

Day 3: Information Technology Risk

  • The IT risk landscape.
  • IT risk assessment frameworks.
  • Internal audit considerations.
  • Internal audit focus / Cybersecurity / Information security / Governance.

Day 4: Auditing the ERM Process

  • Enterprise risk management audits: Internal audit considerations.
  • Assessing enterprise risk management.
  • Maturity assessment approach.
  • Comprehensive assessment approach.

Day 5: Developing the Risk-based Audit Plan

  • Auditable universe: General attributes.
  • Audit universe risk assessment: Examples.
  • Assessment criteria: Sophistication factors.
  • Risk identification: Risk measurement.
  • Risk prioritization.

Training Course: Advanced Audit - Risk Management

The need to manage risks is increasingly recognized as essential to effective corporate governance!

REF: QM321621

DATES: 22 - 26 Dec 2025

CITY: Malaga (Spain)

FEE: 4400 £

Request a Call?

*
*
*
*
*
BlackBird Training Center