{"id":6133,"date":"2017-10-19T10:15:02","date_gmt":"2017-10-19T14:15:02","guid":{"rendered":"http:\/\/www.bu.edu\/cfo\/?page_id=6133"},"modified":"2025-10-03T13:29:27","modified_gmt":"2025-10-03T17:29:27","slug":"audit-selection","status":"publish","type":"page","link":"https:\/\/www.bu.edu\/cfo\/internal-audit\/audit-and-advisory-services\/audit-selection\/","title":{"rendered":"<center>Audit Plan Process<\/center>"},"content":{"rendered":"<p>On an annual basis, Internal Audit &amp; Advisory Services assesses risk at the University based on an inventory of over 130 auditable entities (AE) across three AE types: Units, Processes, and IT. Each AE is assessed using a risk-based evaluation framework that incorporates various risk factors, interviews with senior leaders and stakeholders, control self-assessment surveys from academic units, Enterprise Risk Management considerations, and our internal data analysis.<\/p>\n<p>Entities may be selected for any of the following reasons:<\/p>\n<ul>\n<li>Significant financial transaction activity, including major grant or budget changes<\/li>\n<li>Excessive time since the last review<\/li>\n<li>Changes in personnel, especially senior leadership turnover<\/li>\n<li>Compliance or regulatory changes directly impacting the entity<\/li>\n<li>Benchmarking against peer institutions which highlights significant or emerging risks that may impact the entity<\/li>\n<\/ul>\n<p>Once this evaluation is complete, we build an agile audit plan that allows for investigations or ad-hoc requests from management and can pivot to address any emerging risks throughout the year. We present this plan to the University\u2019s Audit Committee for approval in April. Our team executes the annual plan through audit and advisory projects while fostering a collaborative environment and adding value to the units and departments we work with.<\/p>\n<p><a href=\"\/cfo\/files\/2020\/03\/Audit-Plan-Graphic-2.png\"><img loading=\"lazy\" src=\"\/cfo\/files\/2020\/03\/Audit-Plan-Graphic-2-412x300.png\" alt=\"Audit Plan Graphic\" width=\"412\" height=\"300\" class=\"aligncenter wp-image-7558 size-medium\" srcset=\"https:\/\/www.bu.edu\/cfo\/files\/2020\/03\/Audit-Plan-Graphic-2-412x300.png 412w, https:\/\/www.bu.edu\/cfo\/files\/2020\/03\/Audit-Plan-Graphic-2-768x559.png 768w, https:\/\/www.bu.edu\/cfo\/files\/2020\/03\/Audit-Plan-Graphic-2.png 780w\" sizes=\"(max-width: 412px) 100vw, 412px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>On an annual basis, Internal Audit &amp; Advisory Services assesses risk at the University based on an inventory of over 130 auditable entities (AE) across three AE types: Units, Processes, and IT. Each AE is assessed using a risk-based evaluation framework that incorporates various risk factors, interviews with senior leaders and stakeholders, control self-assessment surveys [&hellip;]<\/p>\n","protected":false},"author":11125,"featured_media":0,"parent":6126,"menu_order":2,"comment_status":"closed","ping_status":"closed","template":"","meta":[],"_links":{"self":[{"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/pages\/6133"}],"collection":[{"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/users\/11125"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/comments?post=6133"}],"version-history":[{"count":11,"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/pages\/6133\/revisions"}],"predecessor-version":[{"id":12620,"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/pages\/6133\/revisions\/12620"}],"up":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/pages\/6126"}],"wp:attachment":[{"href":"https:\/\/www.bu.edu\/cfo\/wp-json\/wp\/v2\/media?parent=6133"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}