Share this page Print

City Auditor's Office audits

City Auditor's Office audits

City skyline banner

Risk-based approach

The City Auditor’s Office (CAO) audit process continues to utilize a risk-based approach throughout the three phases of the audit: planning, fieldwork, and reporting. In particular, the planning phase includes a detailed risk identification and assessment phase. The purpose of this phase is to identify the most significant risks within the area and focus the allocated audit resources on those areas. The result is an audit project that focuses on the most significant risks that could impact the achievement of City objectives.

Audit process

City Auditor's Office audit process
  1. Planning - The project plan outlines the audit objective, key risks, timelines and audit approach.
  2. Fieldwork - Formal audit procedures are completed according to IIA standards.
  3. Reporting - Final report is presented to the Audit Committee and released to the public.
  4. Follow-up - Actions on recommendations are monitored and reported quarterly to the Audit Committee.
  5. Client Feedback - We utilize feedback to identify improvement opportunities in audit services delivery.

Results reporting

The CAO reports the results of all audits in public reports to Council through the Audit Committee. We monitor the progress of action plans implemented to address our audit recommendations and report to Audit Committee on the completeness and timeliness of implementation.