This article examines specific aspects of the practical implementation of risk-based internal audit as an element of a business entity’s internal control system. Specifically, it touches on such key aspects as approaches to developing a risk assessment system, verification and subsequent analysis of business processes for the purpose of subsequent risk identification, the specifics of their qualitative and quantitative assessment, and the specifics of the internal audit department’s interactions with key service consumers.
risk-based internal audit, risk identification, risk assessment, risk appetite, risk response
1. Mezhdunarodnye standarty vnutrennego audita (original) [Elektronnyy resurs]. — URL: https://www.theiia.org/en/standards/2024standards/global-internal-audit-standards/
2. Mezhdunarodnye standarty vnutrennego audita [Elektronnyy resurs]. — URL: https://www.iia-ru.ru/upload/inner-auditor/articles/2023-7726%20GUI%20Global%20IA%20Standards-Russian.pdf
3. Grazhdanskiy kodeks Rossiyskoy Federacii [Elektronnyy resurs]. — URL: http://pravo.gov.ru/proxy/ips/?docbody=&nd=102033239
4. Bernstayn P. Protiv bogov. Ukroschenie riska / per. s angl. — M.: Olimp-Biznes, 2000. — 400 s.
5. Upravlenie riskami organizaciy. Integrirovannaya model'. Konceptual'nye osnovy [Elektronnyy resurs] / Komitet sponsorskih organizaciy Komissii Tredveya, Upravlenie riskami predpriyatiya. — URL: https://www.coso.org/guidance-erm
6. Komitet sponsorskih organizaciy Komissii Tredveya. Centr znaniy [Elektronnyy resurs]. URL: https://hub.coso.org/



