Tufts University Logo SITE_NAME

Search  GO >

this site tufts.edu people

Types of Audits

AMAS conducts several different types of audits.  While certain internal audits focus on only one of the categories described below, more typical audits incorporate elements of each category when we review a functional unit or business process. Each of our audits incorporates a risk assessment and often results in suggestions to improve risk management.

Operational Audits: provide assessments of processes, systems, operations, and strategies to determine the adequacy of internal controls and related policies and procedures.

Financial Audits: provide assessments of internal controls over financial reporting and focus on controls over recording of revenue and expenditures.

Compliance Audits: ensure that university departments and operations adhere to applicable federal, state, and local regulations. A compliance audit determines whether current university policies, procedures, and training programs are sufficient to support compliance with regulations.

Information Technology (IT) Audits: provide assessments of the university’s various information technology organizations, with a focus on controls over program development, change control, applications, system security, databases, logical security, and physical security as they relate to the university’s business applications and data management. Regulatory compliance is also an important part of an IT assessment.

Departmental Reviews: ensure that adequate internal controls exist pertaining to administrative activities and their use of university resources and compliance with university policies and external regulations.

Management Advisory Services: In addition to the audit and risk management services AMAS provides, we work with management to develop efficiencies in operations. We also provides guidance pertaining to various administrative and compliance matters.

Internal Control Self-Assessment questionnaires provide management with questions to guide them in evaluating the effectiveness of their internal control environments and identifying areas where enhancement of certain policies and procedures would be advisable. The questionnaire also provides background information in advance of a formal internal audit.

Self-Assessment Questionnaire