Audit criteria, duration and frequency must meet the requirements of the relevant authorities, i.e. MOM, NEA and SAC.

All interested parties, including regulators and employees, need to know that operations are managed properly with due regard for risk management.

IRM provides key stakeholders with evidence of organizations’ effort to meet their obligations.

IRM’s audit methodology also adopts a risk-based approach that identifies relevant focus areas that are critical to the operational activities for closer examination. The audit process aims to provide value to the organization by identifying areas for improvement and to give recognition to management practices so as to motivate continual improvement.