Frequently Asked Questions
Questions you may have about Internal Audit.
13 questions
Internal Audit is an audit management platform built for internal audit departments, chief audit executives, and audit teams. It helps you plan audits, run engagements, collect evidence, track findings, and produce reports in one structured workspace.
Generic storage tools do not follow the audit lifecycle. Internal Audit is built around audit universe, audit plan, risk assessment, engagement workspaces, structured requests for evidence, findings tracking, auditee portal access, and reporting — with activity history for accountability.
No. Internal Audit is designed to be simple for auditees. They can access a secure portal, view what evidence is required, upload documents, and respond to findings without needing technical knowledge.
No. Internal Audit works through a web browser, so auditees do not need to install any software. They can access the portal using secure login credentials provided by your audit team.
Auditors create structured evidence requests within an engagement workspace. Auditees upload documents directly against each request item, while your team tracks what has been submitted, what is pending, and what needs review.
You maintain an audit universe of auditable entities, build an annual audit plan, and prioritize engagements based on risk. Each planned audit moves into a dedicated engagement workspace for fieldwork and reporting.
Yes. Internal Audit includes a configurable risk library with likelihood, impact, and control efficiency scales. You can run risk assessments per auditable entity and use the risk matrix to prioritize your audit plan.
Yes. Auditors can record findings with severity and ownership, track remediation status, and share findings with auditees through the client portal. All updates are logged in the engagement activity history.
Yes. Internal Audit records key actions such as evidence uploads, reviews, approvals, rejections, and finding updates within engagement activity history.
Internal Audit uses secure cloud infrastructure, encrypted communication (HTTPS/TLS), encryption at rest, role-based access controls, and activity logging to help protect confidential audit records and evidence.
Internal Audit supports role-based access for platform administrators, auditors, and auditees (client users). Each role sees only the engagements, evidence, and findings relevant to their permissions.
Pricing is based on the plan your organization chooses, including the number of auditable entities, team users, and features such as risk assessment, evidence management, and reporting.
Yes. Contact our team through the Contact page to schedule a demo and see how Internal Audit fits your audit function.