We are required by the regulators for our industry (i.e., banking) to have an assessment of our IA function every three years. Will this satisfy the IIA requirements?

Modified on Wed, Sep 18 at 11:02 AM

If the regulator's approach follows a method that would provide an assessment against the Standards, then the regulator's assessment of the Standards as a basis for the assessment, then a separate external QA would be needed.