This audit report outlines the risk assessment process, focusing on risk assessment methodology, risk models, risk prioritization, sample process lists and risk maps.
In this sample, internal audit completes the risk assessment through a combination of the following: interviews with business leaders to understand key strategic business objectives and results from a year’s audits and SOX testing.