Audit criteria, duration and frequency must meet the requirements of the relevant authorities, i.e. MOM, NEA and SAC.
All interested parties, including regulators and employees, need to know that operations are managed properly with due regard for risk management.
IRM provides key stakeholders with evidence of organizations’ effort to meet their obligations.