Training Module
Audit Programme Management
Design and govern risk-informed audit programmes, decide when audits should be combined or kept separate across standards, harmonise group-level structures, and structure programme-level reporting
Overview
Many organisations manage individual audits effectively but struggle to oversee their audit programme as a cohesive system. This often leads to shifting priorities, fragmented results, and supplier audits operating in isolation.
This module focuses on the critical work of designing and governing an audit programme, from single-entity to group-level operations. Participants will learn to build practical structures for meaningful coverage, flexible scheduling, and decision-relevant reporting, ensuring consistent quality and driving continual improvement across all audits.
Applicable environments
This module is applicable to auditing across all ISO-based management systems. The principles and methods taught here are independent of any specific standard and focus on how to plan, conduct, and report audits effectively.
Target audience
Aspiring auditors who want to audit management systems following best practices
Practising management system auditors who want to strengthen their audit knowledge, judgement, and effectiveness
Decision support
Is this module for you?
It is a good fit if you…
are responsible for running or shaping an audit programme.
struggle to move from a calendar of audits to risk-based coverage.
need to decide when audits across multiple standards should be combined or kept separate.
need a harmonised programme model across groups or corporate structures without losing local fit.
want programme-level reporting that supports assurance decisions.
If most of the points above apply, this module is likely a good fit.
It may not be the best fit if you…
already operate a mature, risk-informed audit programme that works in practice.
are not involved in audit programme governance or coordination.
need audit execution skills such as interviewing or evidence collection.
are looking for ISO clause interpretation or audit technique training.
Agenda
Role and boundaries of audit programme management
Programme governance and operating model
Risk-informed audit portfolio design across standards
Supplier audit integration at programme level
Group-level harmonisation and local flexibility
Scheduling and resource planning
Consistency and quality across audits
Programme monitoring, consolidation, and reporting
Continual improvement of the audit programme
Case-based workshop
Show detailed agenda...
Learning outcomes
Key outcomes
Define an audit programme charter that clarifies governance, roles, and escalation routes
Build a multi-year and annual audit portfolio that is risk-informed using existing organisational inputs
Integrate supplier audits into the overall audit programme with clear coverage logic and interfaces
Additional capabilities
Create an audit schedule and resource plan accounting for competence, independence, and change
Set programme-level consistency controls without dictating audit execution methods
Consolidate audit results into programme-level themes for management visibility and review
Additional benefits
Learning materials
Slide deck
Participant workbook
Templates & tools
Practical, reusable artefacts to apply the module directly to your organisation.
Audit program management process
Audit programme charter (roles, decision rights, escalation)
Multi-year audit programme plan template
Annual audit schedule template
Confirmation
Certificate of completion
Delivery & learning format
Virtual live teaching
This module is delivered live, with a strong focus on discussion, practical application, and direct interaction with the instructor.
Sessions work through realistic examples, clarify concepts in context, and apply methods directly to participants’ organisational realities.
Custom delivery options
For organisations with specific constraints or learning objectives, the module can be adapted in format or scope, including in-house delivery and contextualised case material.
For an optimal learning experience
Preparation guidance
This module is designed as part of a modular training approach. Topics are deliberately distributed across modules and are not repeated in full, in order to avoid unnecessary redundancy. Each module is self-contained and can be taken on its own. Where prior knowledge or experience is helpful, this is indicated below so you can decide whether any preparation is useful for you.
Assumed background
This module assumes participants can already operate comfortably in the internal audit domain and understand the difference between programme management and audit execution. In particular:
Solid understanding of audit principles, evidence thinking, and auditor judgement
Familiarity with how audit findings are formulated, reported, and followed up
Basic familiarity with supplier/outsourced relationships (helpful for programme-level integration)
Preparatory modules
Foundational modules (depending on background)
Useful if you are new to the underlying concepts or want a shared baseline before attending this module.
Supporting modules (optional)
Helpful if you want to deepen related skills, but not required to participate effectively.
