Our world is undergoing rapid changes, with risks becoming increasingly complex, interconnected, and harder to predict. These challenges are emerging faster than ever before. Meanwhile, technology is transforming entire industries, and internal audit is no exception. The swift adoption of Artificial Intelligence (AI) demands that internal auditors evolve to meet new challenges while recognizing that technology isn’t just an audit topic—it’s a powerful tool that auditors can leverage.
Audit Planning and Project Management
AI can streamline many of the manual tasks involved in audit planning and project management. For example, it can ensure recurring audits are scheduled and staffed, compare projected costs with actual budgets, notify stakeholders, identify overburdened team members, and update project management systems, all with minimal human intervention.
AI can even assist with creating presentations, transcribing audio into text for narrative reports, and converting text into audio messages for easier communication.
Risk Assessment
One of AI’s most valuable contributions is its ability to aid in risk assessments. It can help populate risk registers, which are used to track and manage identified risks. By drawing on data from past audits and reports, AI can automatically update key risk factors like impact, likelihood, and velocity, making it easier to quantify complex risks.
Operational Quality and Fraud Detection
AI is a powerful tool for identifying and understanding patterns and risks that threaten an organization’s objectives. It helps auditors detect errors, omissions, misclassifications, duplicates, and other issues more quickly and accurately than traditional methods. By sorting results based on criteria such as product lines or business units, AI can pinpoint high-risk areas for further review.
Additionally, AI can spot transactions that bypass controls or fail to follow established rules. This capability is particularly useful in areas like Purchasing, Accounts Payable, and Travel & Entertainment, where AI can streamline what would otherwise be multi-step manual procedures, conducting them in real-time and across the entire dataset
Reporting
AI can enhance reporting processes by automating many routine tasks, such as gathering, collating, and formatting standard report components. It can also check for grammar errors and improve consistency, helping produce faster, more accurate, and impactful reports. This reduces the workload on auditors, allowing them to focus on more strategic tasks.
Compliance Monitoring
AI helps auditors stay on top of compliance by analyzing large datasets for patterns that may indicate non-compliance. With customizable triggers, AI can monitor compliance continuously, send out reminders, and track corrective actions over time. This improves an organization’s ability to address compliance issues promptly and effectively.
In short, AI accelerates risk identification, enhances the quality of fieldwork, and produces better reports that can act as catalysts for positive change within organizations.
Although AI offers tremendous potential, it still requires skilled human intervention. AI learns from large datasets through iterative feedback, but auditors must ensure that AI-generated insights are accurate, contextually appropriate, and aligned with the organization’s standards and communication preferences.
For example, while AI can automate report writing, auditors must review the results to ensure they are clear, concise, factual, and free from AI errors like “hallucinations,” where the system produces inaccurate information. Auditors should also verify that AI-generated reports adhere to the organization’s style, tone, and communication requirements.
When using AI for data analytics, auditors need to understand the data being analyzed, its quality, and how frequently it’s updated. Inaccurate or outdated data could result in faulty audit findings. Auditors must also have a good grasp of the business processes being audited. For instance, while certain accounting reversals or adjustments might be acceptable, auditors need to know when an anomaly signals an underlying inefficiency or issue.
Furthermore, auditors need skills in statistical analysis, data management, and data science to interpret false positives or negatives generated by AI. This is especially important as organizations evolve, adding new products, units, or services—which can influence AI’s data models.
Auditors should remain current on emerging standards and frameworks that govern AI development and use, such as:
The NIST AI Risk Management Framework (AI RMF 1.0)
The ISO/IEC 23053:2022
Framework for AI Systems Using
Machine Learning
The EU AI Act
The OECD AI Principles
Understanding these standards helps auditors ensure that the AI tools they use are secure, unbiased, and reliable.
There are many benefits to adopting AI in internal audits. Studies show AI is improving workplace performance, and auditors can reap these benefits too. However, organizations must be cautious. AI tools must be tested for reliability and security, and auditors should ensure that these technologies don’t inadvertently introduce new risks or undermine organizational objectives.
Internal auditors should proactively learn about AI technologies, staying ahead of their organization’s adoption curve. This means identifying how AI can be effectively integrated into audit processes while anticipating future risks and opportunities. By doing so, auditors can remain relevant and add value in a world undergoing rapid technological change.
Avoiding AI is not a viable option, but neither is adopting it without careful consideration. Auditors must find reliable vendors, test AI tools thoroughly, and introduce them thoughtfully to ensure they enhance rather than hinder the audit process.