Internal audit software: finally, a platform designed by auditors for auditors. No more Excel.
Sentinelys is a GRC platform that stands out for its simplicity. The Internal Audit module is built on a common foundation (audit scope, control library, action plans) to provide you with audit management software that integrates with your risk and internal control data. From the annual audit plan to the closure of recommendations and the generation of the audit report, everything takes place in a single environment shared by all stakeholders.
They trust us
Platform base
With Sentinelys, you don't have to start from scratch.
The platform is built on a simple, functional foundation that supports the Internal Control module, as well as all other modules (Risk and Internal Audit). Easily import your data and control frameworks using advanced no-code configuration features.
-
Scope: Define entities, processes, data, and regulations, and manage all your campaigns by scope.
-
Library: Manage and centralize your control repositories, internal datasets, and campaign documents. Update them at any time.
-
Surveys: Create self-assessment surveys or surveys for third parties, and strengthen your monitoring of compliance issues (Sapin 2, DORA, NIS2, etc.).
-
Action Plans: Implement the recommendations and track your action plans effectively, without relying on Excel spreadsheets that get lost.
Sentinelys is your partner for a thorough and effective audit.
Why choose Sentinelys
SIMPLICITY
Once you discover Sentinelys, you’ll want to use it every day. Get started in just a few days and learn the ropes in a matter of hours, with the help of a training AI.
INTEROPERABILITY
Get a 360° view of your organization with governance data management that’s never siloed.
Questionnaires, risks, internal controls, audits: all modules share the same data, with no need for re-entry.
ADAPTABILITY & CO-CREATION
Sentinelys will adapt to your organization thanks to its no-code approach and the opportunity to collaborate with our experts in internal control, internal audit, and risk management.
If you’d like to take it a step further, we can customize your own work environment on Sentinelys.
SOVEREIGN HOSTING
Data is essential and valuable to your organization, which is why we give you the choice.
Sovereign cloud SaaS hosted by OutScale, a subsidiary of Dassault Systèmes and SecNumCloud-certified, or on-premises installation in your environments.
CONTROL PLANS
Easily create your audit plans.
Annual planning is often a challenging task: structuring the year in alignment with the Audit Committee’s objectives and the risk map. With Sentinelys’ annual audit plan, you can prepare your engagements in advance, identify areas to audit, and allocate your resources—without requiring a definitive level of detail. Engagements can be generated from the plan or created directly based on urgency.
-
Preparatory work: Organize your audit plans and identify the key areas to be audited during the period.
-
Viewing time budgets: Forecast the workload in person-days by assignment and by team.
-
Flexibility: either according to the schedule or on an ad hoc basis, depending on the urgency of a project during the year.
THE AUDIT MISSION
A structured framework for complying with IIA standards, featuring a reliable audit trail.
Each engagement begins with scoping: defining the scope in relation to the target company (entities, processes, physical location, regulatory requirements, etc.), assembling the audit team along with scheduling and budget management, and selecting control frameworks or audit programs from the library. Define engagement milestones and templates using a no-code approach.
Once launched, the engagement dashboard provides a real-time overview: audit program status, pending or overdue requests, scheduled interviews, and customizable key performance indicators. The auditor and supervisor know exactly where the engagement stands at all times.
On each audit form, Sentinelys facilitates a structured exchange between the auditor and the auditee: requests for documents or interviews, submission and validation of evidence. Risks and events identified within the scope are automatically escalated—no manual searching required.
-
Scope of the audit engagement: scope, audit team, auditees involved, and standards selected from the library.
-
Real-time dashboard: program status, ongoing checks, overdue requests, scheduled maintenance, customizable metrics.
-
Structured exchanges: requests for documents or interviews, verification of evidence between the auditor and the auditee.
-
Automatic context retrieval: risks and events within the scope are displayed directly in the assignment.
-
Generating the audit report: structured export compatible with your office suite (Word).
FROM FINDINGS TO REPORT
A validation workflow.
During the audit, the auditor enters their findings into Sentinelys. Each finding requires the drafting of one or more recommendations, which are subject to a validation workflow by a supervisor who ensures the report’s quality before it is issued.
Validated recommendations trigger requests for action plans in Sentinelys to ensure their follow-up until closure. The audit engagement is then exported as a structured report.
-
Findings & recommendations: recorded during the campaign, subject to management approval.
-
Supervisor workflow: ensures the quality of the report before it is issued.
-
Export report: automatically generate a structured audit report from the engagement.
-
Management of recommendations and action plans: these are integrated into the cross-functional module shared across the entire platform.
a feature that might interest you
Time Management & Scheduling
Enter timesheets by assignment and activity to manage your man-day budgets. Constrained scheduling: optimized assignment of auditors based on their specialties, availability, and blackout periods.
-
Timesheets: by assignment and by activity.
-
Constrained projection: specialties, availability, exclusion periods.
-
Metrics: Direct input of activity reports.
INTEROPERABILITY · 360° VIEW
What changes when your modules finally start communicating with each other.
Sentinelys is your comprehensive GRC/ERM (Governance, Risk Management, Control, and Audit) platform, whether you’re an SME or a mid-sized company. Each active module automatically feeds into the others, eliminating the need for re-entry or additional scoping meetings.
+ Risk Management
Risk mapping guides your assignments. Specific risks can be viewed directly in the audit checklist: the auditor has the necessary context without having to contact the risk manager.
No more silos: the auditor has the risk context directly in their checklist.
+ Internal Control
Internal Control oversees Levels 1 and 2. Internal Audit operates at the third level to assess the effectiveness of the system. Both modules share the same action plan repository. Recommendations and guidance are followed consistently, without any duplication.
Unified vision: the three lines of defense within the same environment, using the same data.
+ Events & Incidents
Incidents reported within the audited company’s scope are automatically fed into the audit engagement. The auditor arrives with the necessary context, so no additional kick-off meetings are required.
Immediate context: no separate systems to consult.
Would you like more information?
Contact us!
We’re here to answer any questions you may have. Please feel free to contact us at any time.
Looking for answers?
Frequently Asked Questions
Do you have a specific question? Our experts are here to help. Request a demo to see how our tools can make your day-to-day work easier.