Laserfiche WebLink
Overview of the Annual Audit Plan <br />The Office of the Legislative Auditor utilizes professional standards <br />and guidelines developed by the Institute of Internal Auditors for the <br />Audit Plan Risk development of the annual audit plan. These guidelines recognize <br />Assessment Criteria that an annual audit plan and work schedule benefit the <br />organization by: <br />Using a risk-based audit approach <br />0 Establishing which agencies, programs, contracts, or other <br />to identify and prioritize potential <br />areas will be prioritized for audits on an annual basis <br />audit topics that pose the greatest <br />potential risk and liability to the <br />0Permitting an efficient allocation of limited audit resources <br />County, The Office of the <br />0 Providing a flexible basis for managing audit personnel <br />Legislative Auditor considers the <br />following risk factors: <br />0Projecting an estimated timetable for initiating and <br />• Quality of Known Internal <br />completing audits for the year <br />• Size of Department or <br />Operational Area <br />Eliminating the potential for overlapping audits within the <br />Division and with other audit organizations <br />• Compliance and Regulations <br />• Providing an identifiable basis for the role of the Office and <br />• Public Sensitivity <br />justification for obtaining budgetary funds <br />• Complexity of Transactions <br />• Management Accountability <br />• Quality of Known Internal <br />Preparing the Annual Audit Plan <br />Control System <br />• Age of Program or Operation <br />Audits included in the annual audit plan are selected and prioritized <br />• Audit History <br />using a risk-based approach. Risk assessment is a process used to <br />identify and prioritize audits based upon specific risk factors related <br />• Public Health and Safety <br />to the quality of internal controls and the estimated potential liability <br />• Critical Infrastructure <br />and level of risk exposure to the County of Hawai'i related to <br />• Emerging Risk Areas <br />various County departments, programs, activities, and contracts. <br />The OLA utilizes several techniques to identify and prioritize audits <br />• Inherent Risk Areas <br />in the annual plan. These techniques include: <br />• Departmental Requests <br />• Analysis of operations and internal controls derived from <br />previous internal audits formal audit follow-up <br />• Assessment of operations and controls derived from <br />previous external audits including information in the <br />County's Comprehensive Annual Financial Reports <br />(CAFRs) and Single Audit Reports <br />• Input from elected officials, operational management, peer <br />audit groups, and members of the public <br />• Benchmarking against the audit priorities of other <br />governmental entities <br />• Consideration of current local events, financial conditions, <br />and public policy issues <br />County of Hawaii, Office of the Legislative Auditor 12 <br />