The Institute of Internal Auditors (IIA) has released new Topical Requirements, including Cybersecurity and Third-Party, which take effect in January and September 2026 respectively. For public sector and government audit teams across the Americas, these standards carry unique implications given the sector’s heightened focus on safeguarding sensitive data, managing external partnerships, and ensuring accountability to citizens.
Listen to Pamela Stroebel Powers, Director Professional Guidance, Public Sector, The IIA, as she unpacks the updates, explores their relevance to public sector environments, and provides practical guidance to help audit teams prepare for implementation and strengthen their assurance role.
Learning objectives:
- Understand the updated Cybersecurity and Third-Party Topical Requirements and their implications for government audit teams.
- Assess how these standards intersect with public sector priorities such as data protection, vendor oversight, and accountability.
- Prepare practical strategies for integrating the new requirements into audit planning and performance ahead of their 2026 effective date.