PwC's Academy

This 2-day course will cover all the aspects related to planning and conducting effective risk-based internal audit.

Best Practices in Planning and Conducting Risk - Based Internal Audit

This course will explain all the aspects related to planning and conducting effective risk-based internal audit. Attendees will learn how to identify risks, perform risk assessments, develop a risk-based assurance plan, understand entity-wide controls, and plan and conduct a risk-based engagement. In addition, the course will address the importance of corporate governance and enterprise risk management and discuss the IT and Fraud risk issues that auditor should consider while planning and conducting the audits.

Contact us   Course brochure      

Course Structure

Learning Outcomes

UNDERSTAND organisational risk, risk appetite and risk tolerance and how to incorporate this into internal audit planning

ACQUIRE the ability to link internal audit planning to organisational risk considerations, and international frameworks and Standards to provide an organisational specific risk focused internal audit plan

UNDERSTAND risk assessment and classification, including application to internal audit effort

GAIN improved ability to evaluate risk, incorporate risk attributes into the internal audit program, and record fieldwork in a manner that links recommendations and improvement opportunities to controls and risks

OBTAIN an understanding of Risk Based Internal Audit Methodology

ATTAIN appreciation for global guidance, international frameworks, and Standards relevant to Risk Based Internal Audit

APPLY real risk based internal auditing into their organization

LEARN how to write risk based audit reports that make an impact

USE a risk based approach to redefine and refocus their audit activities


Programme Highlights

Risk-based Internal Audit (RBIA)

ERM-Based Internal Audit

Identifying RBIA Objective

Planning RBIA Engagement

Conducting and reporting RBIA Engagement


Target Audience

This training is highly recommended for Internal Audit and Risk Professionals across all industry groups including:

• Chief Risk Officers
• Heads of Market, Credit, and Operational Risk
• Head of Risk Management Chief Compliance Officers Chief Audit Officers
• Chief Financial Officers Actuaries
• Treasurers
• Auditors (External & Internal) Bank Regulators and Examiners Risk Management Consultants
• Audit & Risk Committee Members


Please contact us for more details.

T: 0117719874


Please contact us for more information

PwC is the brand under which the member firms of PricewaterhouseCoopers International Limited operate and provide professional services. Together, these firms form the PwC network.

The PwC network and each of the individual PwC firms are strongly committed to protecting the privacy of personal data that they maintain about PwC clients, employees and other individuals. As part of this commitment to privacy, PwC regularly reviews its data protection practices to comply with applicable laws, industry standards and best practices. As a result, of the European Union’s General Data Protection Regulation (GDPR) which came into effect on 25 May 2018, and due to other territorial regulations impacting privacy, a comprehensive global programme -- the Network Data Protection Programme or NDPP -- has been established to provide a basis for, and a consistent approach to, data protection compliance across the PwC network and within each member firm.

An overarching goal of the NDPP is to promote a vision, practices and standards across the PwC network that achieve a robust level of protection and appropriate use of the personal data of PwC member firms’ people, clients, vendors and other stakeholders. All member firms are now in the process of implementing the requirements of the NDPP through their own individual firm programs, building upon existing confidentiality and security processes and standards. These new programme requirements are extensive and cover multiple functional areas and aspects of our business, all in pursuit of accountability and transparency in how PwC collects, processes, protects and disposes of personal data.

For more information regarding the PwC network, its organisation and legal structure, and the relationship between member firms, please see