Internal Audit conducts a variety of audits which may one area of focus or a combination of areas.  Audits are identified as part of a Risk Assessment Process and through requests from Management, the Board or in conjunction with the external auditors.

• Integrated Audits – Integrated audits look at controls that address financial, operational, compliance and information systems risks. These audits are typically centered on a business cycle or a specific part of a cycle or process. The depth of the area of focus will vary depending on the business cycle or process.
• Financial – Financial audits typically involve a focus on financial controls as they relate to reporting. These audits focus on accounting controls present in the general ledger or sub-ledger systems. The external auditors perform work in this area primarily.  Internal Audit will complement the work they perform based on an agreed plan.
• Operational – Operational audits focus on the review and assessment of a business process. The activities of the business process result in a financial impact to the organization such as the collection of student tuitions or patient account balances. Internal Audit primarily focuses on this type of audit but can extend the review to how transactions are recorded in the ledgers.
• Compliance – Compliance audits review the level of compliance with internal policies or external regulatory requirements.
• Information Systems – Audits of Information Systems look at the overall infrastructure and network of the University and the controls that relate to the security of the network and the systems that are maintained in support of the goals of the University.