Audit and Assurance

Strengthening governance, manages risk and improves outcomes

We help Boards, Executives and Risk leaders gain confidence that critical programs, controls, systems and processes are operating effectively. Our team combines risk, audit, technology and project delivery expertise to provide independent assurance across business operations, major transformation initiatives and regulatory obligations. Based on client needs, we provide independent, outsourced or co-sourced assurance services.

How we can support

Our team comprises experienced assurance professionals with deep expertise across internal audit, project assurance, technology risk and governance. We provide independent insight and practical recommendations that help organisations strengthen controls, manage risk and deliver better outcomes.

Internal Audit

We provide independent, outsourced and co-sourced internal audit services that help organisations strengthen governance, manage risk and improve control effectiveness. Our team develops risk-based audit plans and delivers assurance across financial, operational, technology, compliance and strategic risk areas, providing practical insights that support better decision-making and continuous improvement.

Project and Program Assurance

We provide independent assurance across the delivery lifecycle of major projects and transformation programs. Through integrated assurance planning, stage-gate reviews, delivery readiness assessments and targeted deep-dive reviews, we help organisations identify emerging risks, strengthen governance, improve oversight and increase confidence in successful delivery outcomes.

Technology Assurance

We conduct independent assurance reviews across technology environments, cybersecurity, information security, data governance and technology risk. Our services help organisations strengthen controls, improve resilience and gain confidence that critical technology systems and processes are operating effectively.

Model Assurance

We perform independent reviews of models, methodologies, assumptions and governance frameworks to assess their design, operation and reliability. Our services help organisations increase confidence in model outputs, support decision-making and strengthen governance over critical models.

Audit and Certification Readiness

We help organisations prepare for external audits, certifications and assurance reviews through readiness assessments, control reviews and remediation support. Our services help identify gaps early, strengthen compliance and improve confidence in achieving successful audit and certification outcomes.

Our assurance services help organisations build confidence in the effectiveness of their governance, risk management, controls and strategic delivery activities.

Internal Audit

We help organisations evaluate the effectiveness of governance, risk management and control frameworks through independent, outsourced and co-sourced internal audit services. Our reviews provide practical insights that support improved oversight, stronger control environments and continuous improvement.

Learn more

Project and Program Assurance

We help organisations successfully deliver major projects and transformation programs through integrated assurance planning, targeted reviews and independent challenge. Our services provide visibility over delivery risks, governance effectiveness, business readiness and implementation outcomes.

Learn more

"We provide practical, independent assurance that strengthens governance, improves risk visibility and supports better outcomes."

Jack Armsworth, Partner - Audit and Assurance

Major Australian Insurer

Co-sourced Internal Audit Technology and Projects

Amstelveen has been supplementing technology and project assurance services for the Internal Audit department of a major Australian insurer for the past 9 years. Through this co-sourced arrangement, we have planned and executed multiple program and technology assurance reviews across the client’s complex technology and project landscape. This has included reviews across the client’s major core insurance platform consolidation and simplification program, data migrations and actuarial data processes, and the client’s broader technology application and infrastructure environment. We have also conducted reviews of enterprise-wide program governance and portfolio management processes. This has included reviews within the client’s EPMO in Australia and New Zealand. These reviews have often been resourced with combined teams to optimise review outcomes and knowledge transfer.

Medical Indemnity Provider

Technology, Cyber, and Compliance Controls Audits​

Amstelveen was engaged to support Internal Audit through the execution of various technology risk, cyber security and compliance (e.g. CPS 234) reviews. Among these included a Cyber Resilience audit which involved a deep dive assessment of business continuity and IT service continuity practices. Amstelveen was then subsequently engaged to assist the Information Security team with uplifting identified capabilities and gaps, including implementing an information Security Management System and reporting solution.​

Major Australian Life Insurer

Co-sourced Internal Audits

Amstelveen has supported the Internal Audit team over a number of years in the execution of technology, operational and project-related internal audit reviews. These have included reviews of core technology management processes and point-in-time assessments of strategically critical programs. This includes audits of CMDB processes and data accuracy, the implementation of Oracle EPM, integration of the insurance services business and associated mainframe applications, and oversight of key vendors. More recently, our work has involved audits of investment operations and ESG governance. Amstelveen continues to support the client in a capability augmentation capacity.

Strengthening confidence through independent audit and assurance

Whether you're enhancing your internal audit function, assuring a major transformation program or assessing critical controls and technology environments, our team can provide independent insight that strengthens governance, manages risk and supports better outcomes.