Audit Plan

Audit Management & Advisory Services Risk Assessment and Audit Planning Process

The annual audit plan is the result of the audit planning process and involves three phases: Risk Assessment, Audit Plan Preparation, and the Annual Audit Plan Submission

Risk Assessment: A risk assessment is performed at the beginning of the planning cycle and is focused on gathering current risk information necessary to prepare the Annual Audit Plan, all in the context of the institution’s risks identified in previous risk assessments.

Audit Plan Preparation: The audit plan is prepared upon completion of the Risk Assessment Phase and represents an exercise in deploying Internal Audit’s resources in the most effective manner possible. 

Annual Audit Plan Submission: Upon completing the risk assessment process and audit plan preparation, each campus or laboratory Internal Audit department prepares a local audit plan. The audit plan documents (Schedules 1, 2, and 3) are submitted to the systemwide SVP/Chief Compliance and Audit Officer with the final risk assessment results. The local plans and risk assessment results are consolidated into the a systemwide annual audit plan for that year. see: UCSC Internal Audit Plan

Internal Audit Risk Assessment