Audit Plan Process

On an annual basis, Internal Audit & Advisory Services assesses risk at the University based on an inventory of over 580 auditable entities. This list includes departments, systems, processes, and regulations. Each entity is assessed using a risk evaluation framework that incorporates interviews with leadership, the output of the ERM process, and our internal data analysis.

Most often, entities are selected for the following reasons:

  • Significant amount or changes in grant activity
  • Significant amount or changes in budget, including budget overruns
  • Excessive time since the last review
  • Changes in personnel
  • Compliance or regulatory changes directly impacting the entity

Once this evaluation is complete, we present an audit plan to the University’s Audit Committee for approval. Our team executes this annual plan via audit & advisory projects throughout the year. Throughout we seek to foster a collaborative environment and to add value to the units and departments that we work with.

Audit Plan Graphic