(1) Internal Audit is an independent and objective assurance and consulting function established by the University Council (Council), through the Audit and Risk Committee. (2) This Charter provides the framework for the conduct of the Internal Audit function in Macquarie University and has been approved by the Council taking into account the advice of the Audit and Risk Committee. (3) The purpose of Internal Audit is to evaluate and advise management on the adequacy of internal controls, compliance with University procedures and policies, and the efficiency, economy and effectiveness of such operations and activities. The mission of Internal Audit is to enhance and protect organisational value by providing risk-based and objective assurance, advice, and insight. The Internal Audit activity helps Macquarie University accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of governance, risk management, and control processes. (4) Internal Audit will: (5) Internal Audit shall cover all programs and activities of Macquarie University and its controlled entities. (6) The Internal Audit function, reports: (7) Internal Audit will present all internal audit findings and reports to the Vice-Chancellor and the Audit and Risk Committee and have access to the Chair of the Audit and Risk Committee, as required. (8) Internal Audit has the authority to access records, physical properties, and personnel pertinent to carrying out any engagement. All records, documentation and information accessed in the course of undertaking Internal Audit activities are to be used solely for the conduct of these activities. All Internal Audit documentation is to remain the property of the Macquarie University, including where Internal Audit services are performed by an external third party provider. (9) The scope of internal auditing encompasses, but is not limited to, the examination and evaluation of the adequacy and effectiveness of the University’s governance, risk management, and internal controls as well as the quality of performance in carrying out assigned responsibilities to achieve the University’s stated goals and objectives. This includes: (10) In the conduct of its activities, Internal Audit will play an active role in: (11) Internal Audit is responsible for: (12) Internal Audit will establish and maintain an open relationship with the external auditor and any other assurance providers. Internal Audit will plan its activity to help ensure the adequacy of overall audit coverage and to minimise duplication of assurance effort. (13) Periodic meetings and contact between internal and external audit shall be held to discuss matters of mutual interest and facilitate coordination. (14) External auditors have full and free access to all Internal Audit strategies, plans, working papers and reports. (15) It is the sole responsibility of the external auditor to determine the extent to which they can rely on the reports, working papers and other documentation for their external audit or other purposes. (16) Internal Audit will develop and update a three year rolling Internal Audit Plan based on a prioritisation of the audit universe reflecting the Strategic Risk Profile and other sources of assurance, in consultation with internal stakeholders. (17) At each meeting of the Audit and Risk Committee, the following items will be tabled and discussed: (18) Annually the Audit and Risk Committee will receive the following reports: (19) The Audit and Risk Committee will: (20) Internal Auditors will have no direct operational responsibility or authority over any of the activities internally audited. Accordingly, they will not implement internal controls, develop procedures, install systems, prepare records, or engage in any other activity that may impair the Internal Auditor’s judgment. (21) Internal Auditors will exhibit the highest level of professional objectivity in gathering, evaluating, and communicating information about the activity or process being examined. Internal Auditors will make a balanced assessment of all the relevant circumstances and not be unduly influenced by their own interests or by others in forming judgments. (22) The General Counsel will ensure that the Internal Audit function remains free from all conditions that threaten the ability of Internal Auditors to carry out their responsibilities in an unbiased manner, including matters of internal audit selection, scope, procedures, frequency, timing, and report content. If the General Counsel determines that independence or objectivity may be impaired in fact or appearance, the details of impairment will be disclosed to appropriate parties. (23) The General Counsel, along with the Vice-President, Finance and Resources, will confirm to the Audit and Risk Committee, annually, the independence of the internal audit activity. (24) Routinely, the Internal Audit service provider reports administratively to the General Counsel. However, in the event of any major fraud, control breakdown or other sensitive issues that arise, the service provider may communicate or work directly with the Chair of the Audit and Risk Committee or Vice-Chancellor as appropriate. (25) Internal audit activities will be conducted in accordance with this charter which aligns with the Institute of Internal Auditors’ International Professional Practices Framework (IPPF), including its Standards, Core Principles for Professional Practice of Internal Auditing, Definition of Internal Auditing and Code of Ethics. (26) Internal Audit will maintain a quality assurance and improvement program that covers all aspects of the internal audit activity in accordance with these standards. An external quality assessment of the function will be conducted at least every five years. (27) In the conduct of internal audit work, Internal Audit staff will:Internal Audit Charter
Introduction
Purpose and Mission of Internal Audit
Role
Scope
Authority
Responsibility
Relationship with External Audit
Planning and Organisation
Independence and Objectivity
Standards and Quality Assurance
View Document
This is the current version of this document. To view historic versions, click the link in the document's navigation bar.