The purpose of this audit work program is to assess, at a high level, and validate key controls in place for the control environment. Inadequate or ineffective controls in this area may give rise to financial and operational risks.
Risks addressed in this audit work program include: a code of conduct and other policies does not exist regarding acceptable business practices, conflicts of interest, or expected standards of ethical and moral behavior; adequate staffing levels are not maintained to effectively perform required tasks; an independent governing body that provides oversight for management's activities does not exist; etc.
Checklists & Questionnaires
Internal Controls Checklist
Entity-Level Controls Audit Work Program