Mandatory internal audit under Section 138 of the Companies Act for prescribed classes of companies — ensuring regulatory compliance.

• Applicability assessment
• Internal audit scope definition
• Audit report to board/audit committee
• Compliance monitoring

Design and implementation of internal control frameworks based on the COSO model — strengthening governance and control environment.

• Control environment assessment
• Risk assessment & response
• Control activities design
• Information & communication review

Review of audit trails in accounting software and ERP systems — ensuring data integrity and compliance with regulatory requirements.

• Tally/ERP audit trail review
• System access & log review
• Data integrity verification
• IT general controls assessment

Systematic identification and assessment of enterprise risks — financial, operational, compliance, and strategic.

• Enterprise risk mapping
• Risk likelihood & impact analysis
• Risk register preparation
• Heat map & risk matrix

Development and implementation of risk mitigation strategies and control activities tailored to business processes.

• Risk response strategies
• Preventive & detective controls
• Process-level control design
• Control testing & validation

Review and monitoring of compliance with labour laws, environmental regulations, FEMA, and other applicable statutes.

• Labour law compliance review
• FEMA & RBI compliance
• Environmental law monitoring
• Regulatory compliance calendar