Skip Ribbon Commands
Skip to main content
Global Institute of Internal AuditorsBreadcrumb SeparatorStandards and GuidanceBreadcrumb SeparatorRecommended GuidanceBreadcrumb SeparatorPractice GuidesBreadcrumb SeparatorEngagement Planning: Assessing Fraud Risks

Practice Guide: Engagement Planning: Assessing Fraud Risks
Recommended Guidance

Engagement Planning: Assessing Fraud RisksConsidering the Probability of Fraud

The internal audit activity is responsible for assessing the organization’s risk management processes and their effectiveness, including the evaluation of fraud risks and how they are managed by the organization (2120.A2). However, assessing the potential for the occurrence of fraud when planning each engagement is just as important because new fraud risks can arise at any time. Therefore, internal auditors must consider the probability of fraud when they develop the objectives of each engagement (Standard 2210.A2).

To ensure adequate review of the risks relevant to each engagement, internal auditors should conduct a fraud risk assessment as part of engagement planning (Standard 2210.A1). This practice guide describes the characteristics of fraud and the process of identifying and assessing fraud risks when planning individual audit engagements.

It outlines the process of incorporating a fraud risk assessment into engagement planning, including how to:

  • Gather information.
  • Brainstorm fraud scenarios.
  • Identify fraud risks and rate their significance.
  • Determine which fraud risks should be evaluated further during the engagement.

Engagement Planning: Assessing Fraud Risks is a practical tool to help internal auditors plan an audit engagement in conformance with Standards 2210.A1 and 2210.A2. It provides a brief overview of the characteristics of fraud, followed by a description of how to assess fraud risks and incorporate the information into an engagement. Access the new supplemental guidance now.

Downloads and Links

Dutch  English   French   Spanish
Practice Guides are restricted to IIA members only.  Members Only

Non-members may purchase this Practice Guide from the IIA Bookstore.

An updated edition of the International Professional Practices Framework (IPPF) guide, more commonly known as the Red Book, is now available. Visit the IIA Bookstore for more information.