Be Informed
Be Updated
Be Interactive
Be Engaged
Business Continuity Management
- > Auditing and Assurance Standards Board Australia
- > Australian Society of Certified Practising Accountants
- > Business Continuity Institute Australia
- > Information Systems Audit and Control Association
- > Institute of Chartered Accountants Australia
- > Institute of Internal Auditors Australia
- > NSW Independent Commission against Corruption
UOWIA Primary Services
Supporting the Audit Management & Review Committee
Business Continuity Management
Audit Services
The main function of Internal Audit is to conduct independent reviews of the processes identified as risk to the University and to recommend improvements in management and control procedures to mitigate risk.
Other functions include:
- Advice on internal control;
- Consultation on fraud prevention strategies and other audit related matters;
- Risk analysis;
- Special and corrupt conduct investigations;
- Reference source for the conditions of disclosure within the Protected Disclosures Act
- Reference source for Quality Assurance Principals.
Benefits to the University:
- Improved efficiency, effectiveness and economy of operations and performance;
- Improvement in the internal controls system;
- Minimisation of overall risk exposure to the University;
- Minimisation of Corrupt Conduct;
- Identification of problem areas and development of recommendations for corrective action;
- Compliance with statutory requirements
- Assistance to management in compliance with accountability obligations and discharge of responsibilities.
Supporting the Audit Management & Review Committee
The Audit Management & Review Committee is a formally constituted committee of Council with particular responsibility to assist and advise Council in fulfilling its corporate governance and oversight responsibilities in relation to the University's management of risk, its internal control structure and its external reporting responsibilities.
To see details on the Terms of Reference, Membership and Meeting of this Committee please follow this link.
Corruption & Fraud Prevention
All employees have a duty to report incidents or suspected incidents of fraudulent or corrupt conduct. Attention is also drawn to the UOW Corruption Prevention Policy
Fraud is the use of deceit or secrecy to obtain a financial benefit to the detriment of the University. Examples of fraudulent acts include:
- Receipt of "kickbacks" or "commissions" or "gifts" from contractors;
- Misappropriation of University assets;
- Obtaining unjust advantage by misusing information gained during the course of your employment;
- Submitting false travel claims.
Corrupt conduct is dishonest behaviour which adversely affects the honest and impartial exercise of official functions. It includes:
- Providing or accepting a bribe;
- Dishonest or partial exercise of official functions, such as awarding a purchasing contract to a friend or relative;
- Breaches of trust by activities such as using University assets or information for personal gain e.g. personal use of a University car; unauthorised release of personal information.
Employees reporting incidents or suspected incidents of fraud or corruption may do so under the Protected Disclosures Act. Internal Audit can assist University employees, through personal advice or staff training, in identifying risks from fraudulent activities in their area of responsibility and recommend controls to minimise the likelihood of fraud occurring. Internal Audit can also provide training to staff members on "Conduct Becoming".
Controls include ensuring that office equipment is secure, adhering to university purchasing guidelines, limiting access to areas of the computer system solely required to perform their duties.
Protected Disclosures
View the NSW Protected Disclosures Act 1994
UOW Strategic Risks Register
The UOW Strategic Risks Register (SRR) is updated on an annual basis. Information on key risks identified, discussed and rated by UOW stakeholders during all subsequent SRAs are captured in annual editions of the Register, following the requirements of a risk management approach underpinned technically by the Australian New Zealand Risk Management Standard 4360: 2004.
The SRR provides in detail risk descriptions, ratings, potential risk contributing factors and related mitigating controls. SRR must be viewed as a living document, subject to changes in risk tolerance, strategic profile and operating environment for UOW.
Each key risk is attached responsibility owners at two levels – primary and supporting. Outcomes and results from UOWIA activities and reported to the Audit Committee from part of the relevant risk treatment; however, other activities like self-audits, functional area improvement initiatives and enhancements of existing control mechanisms also reduce or remove any risk gaps.
The SRR provides a link between UOW-wide risk assessment profiles and annual plans of Divisions, Faculties and Units all working together to achieve UOW strategic and operational goals. All Faculty Deans, Divisional Directors and Unit Heads are provided a copy of the SRR through receipt of the annual UOW Strategic Risk Assessment Report.
Business Continuity Management
The Internal Audit Manager oversees the ongoing maintenance and development of the Business Continuity Plan. The Manager does not have a direct day to day involvement, but would become involved during an incident if required by the Business Continuity Management Group, and after an incident to help review the adequacy of the response. The Internal Audit Manager supervises the Business Continuity Management Coordinator.
Details of the UOW Business Continuity framework are found on the Business Continuity Management site.