AGENCY POLICY Effective Date: Revised Date: Revised Date:

Similar documents
INTERNAL AUDIT CHARTER AND TERMS OF REFERENCE

Standards for the Professional Practice of Internal Auditing

INTERNAL AUDIT FRAMEWORK

BOARD OF EDUCATION OF BALTIMORE COUNTY OFFICE OF INTERNAL AUDIT - OPERATIONS MANUAL INTERNAL AUDIT OPERATIONS MANUAL

Internal Audit Charters

Agenda Item: 7.6 Prepared by: Mark Majek, Kathy Thomas, Deborah Bell, Tamara Cowen and Jaye Stepp Meeting Date: October 2014

INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS)

INTERNATIONAL STANDARDS FOR THE PROFESSIONAL PRACTICE OF INTERNAL AUDITING (STANDARDS)

Audit, Risk and Compliance Committee Charter

JAZZ PHARMACEUTICALS PLC CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS

MISSION STATEMENT OBJECTIVES IN ACCOMPLISHING OUR MISSION

IMMUNOTEC INC. AUDIT AND DISCLOSURE POLICY MANAGEMENT COMMITTEE CHARTER AND WHISTLEBLOWER POLICY

INTERNAL AUDITING POLICIES AND PROCEDURES MANUAL

FERRELLGAS CODE OF ETHICS FOR PRINCIPAL EXECUTIVE AND FINANCIAL OFFICERS

European Investment Bank. Charter for Internal Audit

BAHRAIN TELECOMMUNICATIONS COMPANY B.S.C. AUDIT COMMITTEE CHARTER

CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS

1. This bulletin, which contains the Charter of the Office of Internal Oversight Services (IOS) of

PRACTICE ADVISORIES FOR INTERNAL AUDIT

Internal Audit Charter. Version 1 (7 November 2013)

NORFOLK STATE UNIVERSITY INTERNAL AUDIT CHARTER

INTERNAL AUDITING S ROLE IN SECTIONS 302 AND 404

PIONEER NATURAL RESOURCES COMPANY AUDIT COMMITTEE OF THE BOARD OF DIRECTORS CHARTER

Internal Audit Standards

Effective Internal Audit in the Financial Services Sector

IMMUNOGEN, INC. CORPORATE GOVERNANCE GUIDELINES OF THE BOARD OF DIRECTORS

SECTION B DEFINITION, PURPOSE, INDEPENDENCE AND NATURE OF WORK OF INTERNAL AUDIT

Internal Audit and Advisory Services DRAFT

Public Sector Internal Audit Standards. Applying the IIA International Standards to the UK Public Sector

LUZERNE/SCHUYLKILL WORKFORCE INVESTMENT BOARD CORPORATE COMPLIANCE/ETHICS PLAN

OFFICE OF FINANCIAL REGULATION COLLECTION AGENCY REGISTRATIONS MORTGAGE-RELATED AND CONSUMER COLLECTION AGENCY COMPLAINTS PRIOR AUDIT FOLLOW-UP

Board Charter. May 2014

AMPLIFY SNACK BRANDS, INC. AUDIT COMMITTEE CHARTER. Adopted June 25, 2015

APES 320 Quality Control for Firms

EURIBOR - CODE OF OBLIGATIONS OF PANEL BANKS

TECK RESOURCES LIMITED AUDIT COMMITTEE CHARTER

CALADRIUS BIOSCIENCES, INC. AUDIT COMMITTEE CHARTER

Explanation where the company has partially applied or not applied King III principles

The Institute of Internal Auditors 247 Maitland Avenue Altamonte Springs, FL USA

august09 tpp Internal Audit and Risk Management Policy for the NSW Public Sector OFFICE OF FINANCIAL MANAGEMENT Policy & Guidelines Paper

Internal Audit Manual

AUDIT AND RISK ASSESSMENT COMMITTEE TERMS OF REFERENCE

How To Ensure That A Quality Control System Is Working Properly

PROCUREMENT. Actions Needed to Enhance Training and Certification Requirements for Contracting Officer Representatives OIG-12-3

GAO. Government Auditing Standards Revision. By the Comptroller General of the United States. United States General Accounting Office.

POLICY SUBJECT: EFFECTIVE DATE: 5/31/2013. To be reviewed at least annually by the Ethics & Compliance Committee COMPLIANCE PLAN OVERVIEW

Comparison of Vale s corporate governance practices with NYSE corporate governance requirements applicable to U.S. companies

RALLY SOFTWARE DEVELOPMENT CORP.

COMPLIANCE CHARTER 1

(Effective as of December 15, 2009) CONTENTS

Internal Auditing Guidelines

Hunter Hall International Limited

Audit of Controls over Government Travel Cards FINAL AUDIT REPORT

MACQUARIE TELECOM GROUP LIMITED AUDIT COMMITTEE CHARTER

U & D COAL LIMITED A.C.N BOARD CHARTER

FAIRCHILD SEMICONDUCTOR INTERNATIONAL, INC. CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS (As Amended through December 11, 2013)

AUDIT AND RISK MANAGEMENT COMMITTEE CHARTER

Internal Audit Charter

The ADT Corporation. Audit Committee Charter. December 2014

CHARTER FOR THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS SIGMA DESIGNS, INC. (As adopted by the Board of Directors effective as of May 2010)

CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS OF SERVICEMASTER GLOBAL HOLDINGS, INC.

Audit Quality Assurance Policies. Auditor-Controller/Treasurer-Tax Collector. Financial Reporting and Audits Division. Audit Unit

How To Manage A Company

FORTRESS TRANSPORTATION AND INFRASTRUCTURE INVESTORS LLC CHARTER OF THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS MAY 11, 2015

NCR Corporation Board of Directors Corporate Governance Guidelines Revised January 20, 2016

INTERNAL AUDIT MANUAL

B o a r d of Governors of the Federal Reserve System. Supplemental Policy Statement on the. Internal Audit Function and Its Outsourcing

SunTrust Banks, Inc. Audit Committee of the Board of Directors Charter

CHARTER OF THE BOARD OF DIRECTORS

GAO. Government Auditing Standards Revision. By the Comptroller General of the United States. United States Government Accountability Office

June 2008 Report No An Audit Report on The Texas Education Agency s Oversight of Alternative Teacher Certification Programs

CHARTER FOR THE AUDIT COMMITTEE OF THE BOARD OF DIRECTORS PERVASIVE SOFTWARE INC.

Audit and Risk Committee Charter. Knosys Limited ACN (Company)

State of New Jersey. DEPARTMENTAL DIRECTIVE 1 May 2006 NO INFORMATION SECURITY PROGRAM (IASD-ISB)

Financial Management Framework >> Overview Diagram

Roles and Responsibilities Corporate Compliance and Internal Audit

NEW ZEALAND INSTITUTE OF CHARTERED ACCOUNTANTS CODE OF ETHICS

PRUDENTIAL FINANCIAL, INC. CORPORATE GOVERNANCE PRINCIPLES AND PRACTICES

CHARTER PEOPLE S UNITED FINANCIAL, INC. AUDIT COMMITTEE

Public Sector Internal Audit Standards

WEATHERFORD INTERNATIONAL plc AUDIT COMMITTEE CHARTER Approved: September 25, 2015

Health Sciences Compliance Plan

GENERAL MILLS, INC. AUDIT COMMITTEE CHARTER

Audit Committee Charter

INTREPID POTASH, INC. CORPORATE GOVERNANCE GUIDELINES

FIRST CITIZENS BANCSHARES, INC. FIRST-CITIZENS BANK & TRUST COMPANY CHARTER OF THE JOINT AUDIT COMMITTEE

CHARTER OF THE AUDIT AND RISK MANAGEMENT COMMITTEE OF THE BOARD OF DIRECTORS OF BLACKBERRY LIMITED AS ADOPTED BY THE BOARD ON MARCH 27, 2014

Internal Auditing: Assurance, Insight, and Objectivity

E Lighting Group Holdings Limited 壹 照 明 集 團 控 股 有 限 公 司 (incorporated in the Cayman Islands with limited liability) Stock Code : 8222

Table of Contents: Chapter 2 Internal Control

W. R. GRACE & CO. AUDIT COMMITTEE CHARTER

ALLEGIANT TRAVEL COMPANY AUDIT COMMITTEE CHARTER

MARLIN MIDSTREAM GP, LLC AUDIT COMMITTEE CHARTER

How To Comply With The Law Of The Firm

Internal Audit Manual

Evergreen Solar, Inc. Code of Business Conduct and Ethics

Internal Audit Framework

Human Services Quality Framework. User Guide

CHAPTER 59A-23 WORKERS COMPENSATION MANAGED CARE ARRANGEMENTS 59A Scope. 59A Definitions. 59A Authorization Procedures.

Legislative Language

Transcription:

State of Oregon OREGON DEPARTMENT OF EDUCATION POLICY MANUAL AGENCY POLICY 581-111 Effective Date: 02-06-2007 Revised Date: 12-17-2007 Revised Date: 04-28-2008 APPROVED: Signature on File at ODE RE: Internal Audit Charter PURPOSE: To establish the internal audit charter, which defines the purpose, authority, and responsibilities of the internal audit function within the Oregon Department of Education. Overview: ODE established an internal auditing function in January 2004. Oregon Law, Chapter 373, Internal Auditing became effective June 29, 2005, and Oregon Administrative Rules 125-700-0010 through 125-700-0065 defining how the law would be carried out became effective in January 2006. OAR 125-700-0020(3) provides: The agency s internal audit function s purpose, authority, and responsibilities shall be formally defined in the agency s Internal Audit Charter that is consistent with professional auditing standards. DEFINITIONS: See OAR 125-700-0015 Definitions. POLICY: The Oregon Department of Education supports Internal Audit as an independent appraisal function to examine and evaluate the agency s activities as a service to management and stakeholders. The mission, authority, and responsibilities of the internal audit function within the Oregon Department of Education shall be defined in an Internal Audit Charter (attached) and approved by agency management, the Superintendent of Public Instruction, and the State Board of Education. The charter shall be reviewed at least annually, with changes made as appropriate. Policy 581-111 1

INTERNAL AUDIT CHARTER Oregon Department of Education This charter defines the purpose, authority, and responsibilities of the internal audit function within the Oregon Department of Education (ODE). The charter will be reviewed annually, with changes made as appropriate. Policy: The Oregon Department of Education supports Internal Audit as an independent appraisal function to examine and evaluate the agency s activities as a service to management and stakeholders. The objectives of internal auditing are to assist the Board, the Superintendent and agency management in the effective discharge of their responsibilities by furnishing them with analyses, appraisals, recommendations, and information concerning the activities reviewed and by promoting effective control at reasonable cost. Purpose: The purpose of this policy is to establish the internal audit charter, which defines the mission, authority, and responsibilities of the internal audit function within the Oregon Department of Education. Mission: The mission of Internal Audit is to help ODE accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control and governance processes. The internal audit function fulfills this purpose by engaging in independent, objective assurance and consulting activities that comply with professional auditing standards. Nature of Internal Audit Activities: Using a systematic and disciplined approach, the internal audit activity evaluates and contributes to the improvement of risk management, control, and governance processes within the department. The objective(s) of an audit will determine the scope of that particular audit and the extent to which any particular process is evaluated. The scope of internal auditing may include, but is not limited to, the following: Assessing various aspect(s) of the internal control structure. The internal control structure includes: the control environment; risk assessment; control activities; information and communication; and monitoring. Reviewing the systems established to ensure compliance with policies, plans, procedures, laws, and regulations that could have a significant impact on operations and reports, and determining whether the organization is in compliance. Reviewing and appraising the economy and efficiency with which resources are employed, identifying opportunities to improve operating performance, and recommending solutions to problems where appropriate. Reviewing operations or programs to ascertain whether results are consistent with the established objectives and goals and whether the operations or programs are being carried out as planned. Reviewing processes to identify possible weaknesses and/or opportunities to streamline. Policy 581-111 2

Reviewing the reliability, integrity, and timeliness of financial and operating information, including performance measures, and the means used to identify, measure, classify, and report such information. Following up on actions to ensure adequate corrective action is taken and that it is effective. Reviewing the means of safeguarding assets and, as appropriate, verifying the existence of such assets. Reviewing employees actions to determine if in compliance with policies, standards, procedures, and applicable laws and regulations. Assisting with special investigations. In addition to audits, Internal Audit may provide consultative services. The scope of such service is agreed to between the requesting Manager (Superintendent, Deputy Superintendent, or Assistant Superintendent) and the Chief Audit Executive. Engagements that require more than 16 hours of audit effort will follow standards that apply to consulting engagements. Consulting engagements that require more than 80 hours of audit effort require approval by the Audit Committee. Auditing Standards: In the performance of audit work described above, the internal audit function of the ODE will generally comply with the International Standards for the Professional Practice of Internal Auditing, issued by the Institute of Internal Auditors. If warranted by objectives established for specific audit engagements, compliance with standards issued by other authoritative bodies (e.g., the United States General Accounting Office, the American Institute of Certified Public Accountants or the Information System Audit and Control Association) may also be required. In addition to complying with standards, Internal Audit will abide by the Code of Ethics issued by the Institute of Internal Auditors. The Code includes principles directed toward integrity, objectivity, confidentiality, and competency. As an audit function in state government, Internal Audit will also observe the principles of serving the public interest in discharging its duties. The public interest is defined as the collective well-being of the community of people and entities the auditor serves. Authority: Subject to the independence requirements contained in auditing standards, Internal Audit has the authority to audit all units and functions within the ODE. Internal Audit shall have full and complete access to all department records, physical properties, assets, and personnel. Internal Audit also has, within the authority conferred by public records law, contract terms and conditions, and any other operation of law, access to personnel, assets, and records under the administration of third parties that are also related to delivery of services paid for by funds provided by and/or through the ODE. The Chief Audit Executive also has authority to obtain the necessary assistance of personnel in other units within the ODE as well as services from outside the department. The Chief Audit Executive must follow established procedures to acquire services from outside the department through contract or other type of formal agreement. Documents and information provided to Internal Audit shall be handled with stringent accountability for confidentiality and safekeeping, in conformance with applicable laws and rules. Internal Audit will take reasonable steps to accommodate the department s daily operations in scheduling and conducting audit work. Policy 581-111 3

Independence and Objectivity: The Chief Audit Executive will report functionally to the ODE Audit Committee and administratively to the Deputy Superintendent. Department management will not constrain access of the Chief Audit Executive to the Superintendent of Public Instruction, Deputy Superintendents, members of the State Board of Education, the Oregon Audits Division, the Legislative Fiscal Office, the Department of Administrative Services, and internal audit offices in other state agencies. Internal auditors shall have an impartial, unbiased attitude and avoid conflicts of interest. Internal auditors shall be free of all operational and management responsibilities that would impair their ability to make independent, objective evaluations of department operations. To ensure independence and objectivity, internal auditors shall have no immediate or recent (within two years) authority over, and no direct responsibility for, any activities reviewed. For areas in which an internal auditor has previously provided consultative services, the Chief Audit Executive will verify that a potential impairment to independence or objectivity does not exist before accepting the engagement. If prior consultative services subject to professional auditing standards were provided but determined to not impair independence or objectivity, the Chief Audit Executive will communicate such determination to the ODE Audit Committee, and management of the unit or function being audited prior to commencing fieldwork. The Chief Audit Executive will inform the ODE Audit Committee of any personal or external impairment to independence or objectivity once the impairment becomes known. Roles and Responsibilities: Internal Audit, ODE Audit Committee, and Management each play a role in the internal audit function. The role of Internal Audit is to provide management independent advice regarding opportunities to reduce risk or improve department operations. This advice is typically based on work done according to professional auditing standards. The role of the ODE Audit Committee is to enhance the department s risk management activities and assure the independence and quality of the internal audit function. Management s role is the critical evaluation of the information presented during the audit process (including the audit report), provision of timely feedback to confirm agreement with the information presented, resolve points of disagreement, and/or identify points of unresolved disagreement, and the prompt development, submission and execution of a management improvement plan, as appropriate. The Deputy Superintendent determines, on behalf of and in consultation with the Superintendent and/or the State Board, as appropriate, the risk that the department is willing to bear and the propriety of proposed management improvement plans to address risks identified through the audit process. Management ODE management is responsible for: 1. Applying resources efficiently, effectively, economically, and legally to achieve the purposes for which the resources were provided; 2. Complying with applicable laws and regulations (includes identifying the requirements with which ODE must comply); 3. Establishing and maintaining effective internal control to help assure that: appropriate goals and objectives are met; resources are used efficiently, economically, and effectively; resources are safeguarded; laws and regulations are followed; and, reliable data are obtained, maintained, and fairly disclosed. Policy 581-111 4

4. Providing appropriate reports to those who oversee their actions and to the public in order to be accountable for the resources used to carry out government programs and the results of these programs; 5. Developing and executing management improvement plans that address the risks raised in findings and recommendations included in audit reports; and, 6. Following the prescribed process for tracking the resolution of audit findings and the management improvements implemented to address the risks identified in the audit report. ODE Internal Audit Committee The ODE Internal Audit Committee is responsible for: 1. Evaluating audit findings and recommendations and planned management improvements in the light of the level of risk that agency management is willing to assume; 2. Establishing the minimum level of audit follow-up to be conducted; 3. Advising the Chief Audit Executive, the Deputy Superintendent, the Superintendent and/or the Board, as appropriate, if in the judgment of the committee, management is assuming an unreasonable level of risk; 4. Reviewing and approving the periodic audit plan prepared by the Chief Audit Executive, providing input on audit priorities where appropriate; 5. In consultation with the Chief Audit Executive, determining the most appropriate source of audit resources for specific topics included in the periodic audit plan; 6. Providing an open avenue of communication between the Chief Audit Executive and department management; and, 7. Overseeing the internal audit function. (Note: The Audit Committee must concur with any disciplinary action being considered against the Chief Audit Executive before such action is taken.) Internal Auditor The following activities are the responsibility of the Chief Audit Executive. 1. Assure that all ODE internal audits comply with auditing standards. 2. Develop procedures that govern the ODE internal audit process as supplemental guidance to auditing standards. 3. Periodically conduct enterprise risk assessment to facilitate audit planning. 4. Develop a risk-based audit plan that covers no more than two years. In developing the plan, consider the work of others, such as the Oregon Audits Division and federal auditors. Submit the plan to the ODE Audit Committee for review and approval. Assist the ODE Audit Committee in determining an appropriate level and source of audit resources necessary to execute the audit plan. Update the audit plan as new audit issues emerge. 5. Execute the approved audit plan. Establish audit objectives, determine scopes of work, and determine the audit procedures necessary to accomplish the audit objectives. Report periodically to the ODE Audit Committee on the status and results of the audit plan, including significant issues and potential improvements. 6. Conduct appropriate follow-up and report the status of planned management improvements in response to audit findings reported by internal and external auditors. Advise the Deputy Superintendent and the ODE Audit Committee on risks related to the management improvements implemented. Develop and administer a process to track the resolution of audit findings. Policy 581-111 5

7. Remain available in an advisory role to operational management when they are subject to audit or review by an external party, such as federal auditors or the Oregon Audits Division. However, operational management remains responsible for acting as liaison to the auditor and responding to any issues raised during the audit or review. 8. When specifically requested by management or at the discretion of the Chief Audit Executive, provide feedback on actions under consideration by management (for example, a proposed policy or procedure) from a risk management perspective. 9. Assist in the investigation of suspected fraudulent or inappropriate activities within the department and notify appropriate management and the ODE Audit Committee of the results. 10. Act as the Chief Audit Executive for the department, assuring that ODE complies with the requirements for internal auditing set out in OAR 125-700-0010 through 0060. 11. Act as contract administrator for audit services provided to ODE by private sector audit firms or by staff from other state agencies through an interagency agreement. Note: Although internal auditors may periodically attend and participate in various management meetings, an internal auditor should not participate in making decisions that affect the organization outside of the internal audit function. Such participation could create an appearance of impairment to independence. Policy 581-111 6

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information