To uphold our responsibilities and accomplish the objectives established in our audit charter, the Internal Audit Division performs a variety of engagements depending on the circumstances and senior management’s needs.
The following audit services are provided by the Internal Audit Division:
Operational Audits Operational audits are systematic reviews of effectiveness, efficiency and economy of Department programs and processes. They are future-oriented evaluations with the primary focus being standard operating procedures and achievements related to Department/Division objectives.
Fiscal Control Audits Fiscal control audits are limited scope reviews with a primary focus on controls that can impact financial statement assertions (Existence or Occurrence, Completeness, Rights and Obligations, Valuation or Allocation, Presentation and Disclosure).
Compliance Audits Compliance audits measure the Department’s, contractor’s and grantees’ compliance with established Federal, State and Department laws, rules, regulations, contracts and policies.
Information Technology Audits Information technology (IT) audits evaluate the quality of controls and safeguards over information technology resources, policies, operations and critical data maintained by the Department. These audits consist of reviewing the effective use of information technology resources, adherence to State and Department IT policies and assessing the design and implementation of internal controls over computer applications and the computing environments in which they are used against professional IT frameworks.
Integrated Audits Integrated audits are wholistic engagements that address multiple objectives (Strategic, Operational, Reporting, Compliance) in assessing a division, section, program or process. The majority of the Internal Audit Division’s audits are integrated due to the enhanced level of assurance we are able to provide to our clients.
Follow-Up Audits Follow-up audits evaluate the adequacy, effectiveness and timeliness of actions taken by management concerning reported high-risk observations.
Special Investigations Special investigations focus on matters such as allegations of theft, noncompliance with laws/rules/regulations, misuse of resources, abuse of power, falsification of records, bribery, conflicts of interest and/or waste.
Data Analytics Data analytics engagements involve a systematic process through which we gather data, assess the quality of the data, cleanse the data, perform analyses and provide the results to management for informed decision making.
Consultations/Advisory Services Advisory and related client service activities, the nature and scope of which are agreed upon with the client, are intended to add value and improve an organization’s governance, risk management and control processes without the internal auditor assuming management responsibility. Examples include counsel, advice, facilitation and training.
Assistance to the Office of the State Auditor The Internal Audit Division aids the North Carolina Office of the State Auditor (OSA) upon request. These duties may involve the following:
- Assisting with OSA Investigative audits,
- Assessments of Internal Controls, and
- Reviewing inventories of critical Department assets.