Flexible audit universe

Risk assessment for each area

Effective audit planning

Complete control over the audit process

Monitoring of post-audit recommendations

AdaptiveAudit is a comprehensive tool that facilitates internal control and audit processes, from the setup of audit universe, risk analysis, strategic planning, through annual planning, performing the audit, all the way to monitoring and implementing post-audit recommendations and other actions.

Internal auditing, used as a universal tool for monitoring and controlling the organization, not only shows the compliance of the quality control system with appropriate norms, standards, procedures, internal requirements and legal regulations, but also provides management with data necessary to make informed decisions that will shape the future of the organization.
The goal of internal auditing is to add value and facilitate current operations, as well as provide information for planning future enhancements and optimizations. Such auditing relies on systematic and ordered assessment of risk management, control and corporate governance processes, actively aiding in improving their efficiency. This helps the organization in achieving its goals by ensuring the efficacy of said processes as well as by providing advisory information.

Audit universe and risk assessment

According to International Standards for the Professional Practice of Internal Auditing and the Institute of Internal Auditors (IIA), the fundament for designing a work plan for internal auditors is risk analysis.

In AdaptiveAudit, the audit universe includes a database of audit objects, such as processes, business lines, companies, external suppliers, applications, etc.

The AdaptiveAudit system enables you to perform risk analysis in each of the audit areas on the basis of questionnaire input and risk-calculating algorithms.

Strategic audit planning
(for a 5 year period)

The AdaptiveAudit solution allows you to configure a strategic schedule of audit reviews in the organization within a 5-year period, one that accounts for levels of risk related to each area (notably, audit processes) as well as the dates and results of recent audits.

Such planning results in the creation of a strategic audit plan for areas that ought to be audited in the following years.

Operational audit planning
(one year period divided into quarters)

The annual audit plan generated by AdaptiveAudit contains a general description of tasks that the internal audit team is going to perform over that period. As a fruit of cooperative intra-organization labour, this annual audit plan ought to take into consideration both short- and long-term company goals. The AdaptiveAudit system allows you to define within the annual plans the composition of audit teams, as well as to distribute person-days allocated to each task among the team members.

As part of annual planning you can also plan audit tasks for each quarter of the given year.

The system allows you to automatically allocate person-days to teams and to define the composition of each team, as well as to distribute and swap person-days between teams.

Audit work in stages

Defining an audit is divided into several stages, each flagged with a status. Depending on the current status of the audit, only certain fields can be filled in. The users of the system, in accordance with the role they play in the audit process, fill in information, change the status, validate data and move to the next stage of the audit process.

The audit can be assigned the following statuses:

  • Open
  • Preparation
  • Local work
  • Issued
  • Closed

Monitoring of post-audit recommendations and actions

While auditing is being performed on location, the system allows you to monitor the degree to which the control mechanisms meet your predictions. Should there be any discrepancies, you can have these listed and any post-audit recommendations and corrective actions registered and assigned. Following this you can monitor work progress.

AdaptiveAudit gives you access to comprehensive monitoring of the implementation of post-audit recommendations through real-time access to information about the status of each recommendation as well as reporting to the individuals involved.

Reporting and automatic system notifications

The system can generate a variety of reports to assist you in analysing the organisation’s situation precisely and to clearly present the results of all audit actions.

The AdaptiveAudit system notifies its users about all significant changes in running audits as well as about any action required from each user.

User notifications include:

  • when the audit is ready and sent to the Auditor,
  • when all audit questions are answered,
  • when the audit is completed,
  • what the deadlines for each post-audit action are,
  • all status changes for post-audit actions.

Coming soon

How to ensure vendor compliance and mitigate risks of 3rd parties

Jan Anisimowicz | C&F

ISACA NA CACS, May 13–15 2019, Los Angeles

find out more

AdaptiveAudit belongs to the AdaptiveGRC product family

What is AdaptiveGRC?

AdaptiveGRC is the first Polish IT system in the field of Governance, Risk Management and Compliance.

It supports managing organizations in the areas of:

corporate governance – by facilitating the application of an appropriate, effective and lean management model.

risk management – by allowing you to identify and effectively manage risks and make informed, conscious decisions about current dangers.

regulatory compliance – by facilitating the monitoring of the level of compliance with relevant legislation and standards.

What makes AdaptiveGRC stand out?

innovative data model – information is synchronised and kept in one integrated system

ability to configure processes inside the system thanks to a common data model

ability to instantly analyse information and create reports tailored to the needs and requirements of each stakeholder

recording events (audit trail) and the use of electronic signatures

About Us

We are a team of passionate people working around the globe. We combine business and process insight with our technology expertise to develop state-of-the-art IT solutions. We specialize in Life Sciences and beyond, with years of GRC expertise spanning across multiple industries where security is of the highest importance.

Request an AdaptiveAudit demo




World`s Best Trust Us