Idaho State University

• Academics
• Prospective Students
• Current Students
• Faculty & Staff
• Alumni & Visitors

• Auditing Services Home
• About Us
  • Auditing Services Charter
  • Audit Staff
  • Consultative Services
  • Presentations
  • Frequently Asked Questions
• Audit Process
  • Types of Audits
  • Risk Assessment
  • Steps of an Audit
• Report Misconduct
  • What to Report
  • How to Report
• Policies
  • Faculty/Staff Handbook
  • State Board of Education
  • State of Idaho Administrative Rules
  • State of Idaho Statutes
  • State of Idaho Board of Examiners
  • State of Idaho Fiscal Policy Manual
  • Purchase Cards
  • Exempt Student Organizations
• Department Links
  • Affirmative Action
  • Finance & Administration
  • Budget Office
  • General Counsel
  • Human Resources
  • Information Technology
  • Public Safety
  • Purchasing Services
• Staff Resources
  • Student Homepage
  • Webmail
  • Faculty/Staff Tools
  • Barracuda Spam Firewall
  • Sun Java System Calendar Express (MyCalendar)
• Documents and Forms

 

 

 

Stop 8219
Administration Room 310
Phone: (208) 282-3182
Fax: (208) 282-4682

 

Frequently Asked Questions

The following are answers to frequently asked questions.

What are internal controls?

Internal controls are nothing more than policies or procedures put in place to safeguard an asset, provide reliable financial information, promote efficient and effective operations and ensure policy compliance. Generally there are three types of control:

• Preventive Controls - are designed to discourage errors or irregularities from occurring. For example: Processing a purchase order only after it has been properly approved by the appropriate personnel.
• Detective Controls - are designed to find errors or irregularities after they have occurred. For example: Comparing transactions on monthly management reports to the departmental source documents.
• Directive Controls - are designed to encourage a desirable event. For example: written policies and training seminars assist in the accomplishment of goals and objectives.

Who is responsible for internal controls?

While everyone at the University plays a part in the internal control system, ultimately University administration is responsible for ensuring that adequate controls are in place. They, in turn, delegate part of this responsibility to each operational area, whether it is administrative or academic. Essentially, every employee has some responsibility for making sure that the internal control system functions properly. Therefore, all faculty and staff need to be aware of the concept and purpose of internal controls. If you are a departmental supervisor you must ask yourself, "How do I know that things are okay? Do I assume that all is well until a crisis happens, or do I review processes and procedures on a regular basis to make sure I know what is going on?" While good internal controls will not prevent or solve all your problems, they provide an early warning system to help prevent surprises.

What does Auditing Services do?

Auditing Services conducts many types audits and reviews and also provides consultative services.

Why are we being audited?

Auditing Services schedules audits based on an annual risk assessment and audit plan. In addition, other audits are scheduled due to requests from the ISU Audit Committee, president, vice presidents, State Board of Education or external regulatory agencies.

What can I expect during an audit?

Please see the following link: steps of an audit

What will the auditors need from me?

The main items needed from you for a successful audit are cooperation and communication with Auditing Services. The following are specific examples of what you can do to help the audit process:

• Supply all requested information on a timely basis.
• Document departmental policies, procedures and processes.
• Maintain organized files, documents and transactional support.
• Share any internal control concerns you have with Auditing Services.
• As issues are communicated to you during the audit, begin thinking about potential corrective actions.
• Review the draft audit report and make any suggestions for changes or enhancements either before or during the exit conference.
• Provide a written response to issues identified in the report, along with who will be responsible for implementing the corrective actions and when they will be completed.
• Be proactive in monitoring the progress of the corrective actions.

What does Audit have to do with it?

There is a common misconception that internal auditing is limited to financial concerns. Auditing Services assists University management by:

• Providing reasonable assurance the University’s goals and objectives are being met by appraising the economy and efficiency with which resources are employed and identifying opportunities for cost savings and revenue enhancements. 
• Assisting University management by identifying and evaluating significant exposures to risk and contributing to the improvement of risk management and control systems.
• Verifying the existence of University assets and ensure adequate financial and management safeguards and controls are maintained to protect them from loss.
• Ascertaining compliance with University policies and procedures and government laws and regulations.
• Performing special studies and assessments to deal with specific problems or information needs and provide consultation and guidance relative to new policies, procedures, processes, and systems.
• Performing special reviews to investigate fiscal misconduct, fraud, conflicts of interest, waste, and abuse and recommend controls for their prevention and detection.

Additional questions?

Please contact Auditing Services: contact information