Investment in change across financial services is significant with large capital, redress and control programmes being driven across all of the organisations we surveyed. As a result, internal audit functions are devoting substantially more time and resource than they have previously to providing assurance over the large-scale change in which their organisations are investing to meet regulatory demand and drive growth. We are seeing examples of up to 40% of the total audit plan effort being focused on change programme assurance. Given the high technological content of change programmes in areas such as Solvency II, Basel III, COREP and IFRS 9, IT specialists have a significant contribution to make to multi-disciplinary internal audit teams in delivering appropriate and robust challenge. Internal audit is increasingly expected to assess whether required outcomes are being achieved by large-scale change programmes, as well as whether programme governance controls are operating effectively. We have seen numerous examples whereby internal audit functions are providing the check and challenge on programme boards to help assure whether regulatory expectations and control requirements are being met as part of programme delivery. In our experience, many functions will need to develop their approaches and range of reporting tools to deliver flexible, timely assurance in these areas.