Using Risk Assessment to Build Individual Audit Programs - OAR321


In this engaging three-day seminar, you will learn how to use risk assessment techniques and principles to build and conduct risk-based and value-added audit programs. You will explore progressive approaches to assessing risk and determine the most appropriate strategies to build targeted audit programs for your organization and audit units. Attendees will learn how to build audit programs that will encompass an evaluation of a wider spectrum of risks: financial, information systems, regulatory and compliance, human resources, health & safety, operational effectiveness and efficiency, and reputational risks. Through case studies and other interactive approaches, you will have an opportunity to be hands-on in working through these various scenarios. Finally, you will learn effective approaches to include sustainable risk-mitigation and corrective action strategies into the report and ongoing monitoring efforts. Attendees will emerge from this session with a toolbox of proven implementable approaches that will enhance any internal audit function to generate high-value and high-impact outcomes. 


Tuition cost


NASBA Certified CPE

24 Credits


Why you should attend

You should attend because risk-based auditing requires auditors to focus on the risks involved in the programs, processes and activities reviewed to verify that risks are being managed by management.

Who should attend

Audit Directors and Managers; Internal, External, and IT Auditors; Operations Managers

What You'll learn

You will learn how to use risk assessment, generally applied to annual audit plans to held build individual audit programs that will increase the effectiveness, efficiency and confidence when audit teams perform fieldwork.


  • Fundamentals of Internal Auditing (OAG101)
  • Risk School (OAR201) or equivalent experience

Course Objectives 

  • The learner will be able to identify strategies to incorporate data analytics into the audit program to streamline audit work. 
  • The learner will be exposed to progressive approaches to creating audit reports that clearly and effectively communicate the audit results and risk posture to the audit committee, senior management, and organizational and operational leadership. 
  • The learner will learn effective approaches to include sustainable risk-mitigation and corrective action strategies into the report and ongoing monitoring efforts. 

Course Topics  

  1. What is Risk Assessment? 
  2. Strategic Plans 
  3. Organizations' Risk Assessment Approach 
  4. Assessing Risk 
  5. Categorization of Risks 
  6. Using Data Analytics 
  7. Risk-Based Audit Programs 
  8. Risk-Based Audit Reports 
  9. Corrective Action Plans 
  10. Updating Risk Assessmet

Schedule your course

Use the table below to select the time and location that works best for you.

Timezone: America/Denver

November 2021

Nov 8th, 2021-Nov 11th, 2021

ACI Learning is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: