Risk Assessment & Audit Plan

Annually, we perform a countywide risk assessment to identify areas of risk in financial business processes and information technology environments. A survey is distributed to county departments and solicits feedback on high-risk elements such as changes in key management, the regulatory environment, organizational structure, critical applications, and budgetary position. We also analyze applicable financial data from the county enterprise resource planning system. From this information, we apply professional judgement and identify departments and areas of high priority for audit and develop an audit plan based upon available audit resources. The audit plan is presented to the Audit Oversight Committee for review and is ultimately approved by the Board of Supervisors.