Office of Inspector General
Audits? What you need to know
this information will help reduce any stress
you may be feeling about your upcoming
audit. Our goal is to provide
information that will help you make a
positive impact in your area.
What is an audit?
An Office of Inspector General (OIG) audit is part of the department's system of "checks and balances." An audit is designed to complement other management evaluations and to provide constructive recommendations for enhanced operational performance. It is a review of a selected program, activity or function which provides management an independent appraisal of whether:
Desired results and objectives are achieved efficiently and effectively;
Systems are in place to ensure compliance with laws, policies, procedures and regulations; and
Financial and operating information is accurate, complete and reliable.
the OIG provides other types of services, an
audit is the most comprehensive.
Audits are conducted in accordance with
statutory requirements and nationally
recognized audit standards.
How are audits selected?
Our office works with department employees and managers to develop an annual audit plan that is approved by the Secretary. Some audits and reports are required by law. Some projects included in the plan are requested by management. Others are chosen through a risk assessment process which includes an analysis of where the department spends the most money, likelihood of financial loss, significant organization or program changes and employee or management concerns.
What if this is a bad time?
We try to minimize the impact of being audited. An audit may be postponed for a short period of time to accommodate an office's work schedule.
What is the audit process?
Before an audit begins, we notify management through an "engagement letter." The communication includes a general description of the planned audit work, who will be involved and when the audit will start.
An entrance conference is a meeting between the OIG and management of the area being audited. The purpose of this meeting is to introduce the audit team and audit participants, to discuss the purpose of the project and to seek input about the project’s direction and scope.
Following the entrance conference, auditors conduct research to develop an understanding of the area being audited. During this phase, we review laws, policies, procedures, organization charts, position descriptions, performance and financial reports, industry literature, etc. We normally interview some staff members. At the end of this phase, we determine specific objectives for in-depth study.
During fieldwork, we review processes, conduct tests and perform other procedures necessary to accomplish our audit objectives. Fieldwork is the most time-consuming part of the process for the auditee, as this phase usually includes activities such as gathering data, pulling files and asking questions.
Reporting - First Draft
Once fieldwork is complete, we prepare a draft report of findings. This draft report contains background of the area being audited; audit purpose, scope and methodology; reportable conditions and recommendations. The draft is sent to management of the audited area for review.
The exit conference is an opportunity to discuss the draft report and make certain the information in the draft report is accurate. Minor issues encountered during the audit but not significant enough to include in the report may also be discussed at this meeting. The draft report may be modified based on information provided.
Reporting - Management Response
Once the report is issued for management response, the manager of the program function or operational unit has, by statute, 20 working days to respond in writing to any findings and recommendations contained in the report. A copy of the management response is included in the final report. In general, a management response should contain the following information:
1) A response agreeing with the findings should begin with "We concur" and explain what will be done to correct the issues including an estimated completion date.
2) A response disagreeing with the findings should begin with "We do not concur" and explain the reason for the disagreement.
Audit reports that contain disagreements are sent to the appropriate Assistant Secretary with a request for resolution within 30 calendar days.
Reporting - Final Report Distribution
Statutorily, audit reports must be sent to the Secretary and the Auditor General. We also distribute reports to appropriate department management and other interested parties. Unless they contain confidential or sensitive information, reports are posted to our website.
How long do audits last?
Audits vary in length from a few weeks to several months, depending on the complexity of the project and the amount of required research. We provide management with periodic updates of our progress and we attempt to minimize disruption to staff and operations during the process.
Customer Services Survey
In order to improve the services provided by the OIG, we send a customer service survey to management of the area audited. This survey offers the customer an opportunity to evaluate the work of our staff and the resulting report's conclusions and recommendations.
What can I expect of the auditor?
Auditors should be independent and objective in performing their work. Auditor should have an impartial, unbiased attitude and should avoid conflicts of interest in all matters relating to the audit work.
Auditors are expected to maintain the highest level of professionalism in their work. Auditors should:
Maintain the highest degree of integrity, objectivity and independence in applying professional judgment to all aspects of their work;
Use professional judgment in planning and performing audits and in reporting the results;
Exercise reasonable care and diligence; and
Apply the care and skill expected of reasonably prudent and competent auditor; however, auditors are not expected to be infallible.
Director of Audit: Kris Sullivan 850-410-5506