Internal Audit & Risk Management Department Profile
The Internal Audit & Risk Management Department at MEDS provides independent assurance and advisory services aimed at strengthening governance, accountability, internal controls, compliance, and enterprise risk management across the organization.
The department plays a critical role in safeguarding organizational resources, enhancing operational efficiency, promoting transparency, and supporting sound decision-making processes. Through risk-based audits, compliance reviews, risk assessments, and continuous monitoring, the department helps ensure that MEDS operates effectively, ethically, and in compliance with applicable policies, regulations, and governance standards.
The department works closely with the Board of Directors, management, and operational departments to identify risks, evaluate control systems, improve processes, and strengthen institutional accountability. It also supports the development of a proactive risk management culture that enhances organizational resilience and sustainability.
Key Functions
- Conducting risk-based internal audits
- Evaluating effectiveness of internal controls
- Reviewing financial, operational, and compliance processes
- Identifying operational and strategic risks
- Monitoring regulatory and policy compliance
- Developing and monitoring risk mitigation measures
- Preparing audit findings and advisory reports
- Supporting fraud prevention and detection initiatives
- Monitoring implementation of corrective actions
- Supporting business continuity and organizational resilience
- Promoting accountability, ethics, and good governance practices
- Advising management on process improvement opportunities
Mr. Henry Waweru – Manager, Internal Audit & Risk Management.