IIA - The Institute of Internal Auditors

Communicating Results of Internal Audit Services

This guide supports the implementation of Standards 11.3 Communicating Results and 14.5 Engagement Conclusions by covering four key types of results of internal audit services, including (1) the significance of assurance engagement findings, (2) assurance engagement conclusions, (3) advisory engagement conclusions, and (4) conclusions across multiple engagements.
By following this guidance, internal auditors will be able to:

• Determine the significance or priority of findings using well-defined criteria.
• Effectively communicate a conclusion based on an aggregation of the findings, and for assurance engagements, provide an assessment regarding the effectiveness of the governance, risk management, and control processes of the activity reviewed.
• Develop a summary of the results or advice provided when performing advisory engagements.
• Recognize how the results of multiple engagements can yield conclusions at the level of the business unit or organization.

This guide supersedes “Formulating and Expressing Internal Audit Opinions,” published in 2009.
 

Organizational Behavior Topical Requirement

Organizational behavior is the observable choices employees make in doing their jobs and how they work with others. This behavior influences performance and the achievement of organizational objectives. Simply put, organizational behavior is “the way we do things” and is considered a subset of culture.

This document seeks to apply a traditional risk-based audit approach to organizational behavior by articulating governance, risk management, and control processes that all organizations can apply to managing the risk of misaligned organizational behavior.