Internal audit must ensure the data it entrusts to external parties is safeguarded.
Like any business unit, internal audit is responsible for ensuring that the data it entrusts to third parties protected. That means making sure that external auditors, software service providers, and others have controls in place and developing a working relationship to prevent data from being leaked to outsiders.
