This is the current version of this document. To view historic versions of this document click the link in the main navigation (grey) bar above or contact email@example.com for versions that expired pre 27 July 2015.
Section 1 - Overview
(1) The Audit and Risk Committee Terms of Reference and Charter sets out the objectives, authority, composition and tenure, roles and responsibilities, reporting and administrative arrangements of the Audit and Risk Committee (the Committee) of the University of New England.
(2) The Committee is established as a Committee of the Council of the University of New England (the Council), with delegated authority for a number of Council functions associated with audit, risk management and compliance at the University and its related entities. The establishment of this Committee and the delegation of Council powers to it are actions authorised under Section 17 of the UNE Act.
(3) The provisions of this document take effect as a Council Rule made under Section 29 of the UNE Act. The document is also the University's instrument for meeting its statutory obligations required by NSW Treasury and the Institute of Internal Auditors (Australia). For the purposes of its professional obligations, these Terms of Reference are also considered to be the University's Audit and Risk Committee Charter.
(4) To consider, review and advise the Council of the University of New England (the Council) on the compliance of the University and its related entities with the various laws and regulations by overseeing and monitoring the University of New England's governance, compliance, risk and control frameworks, and its external accountability requirements.
(5) To maintain organisational arrangements that provide additional assurance, independent from operational management, on internal audit and risk management.
Section 2 - Committee membership
(6) The members of the Committee are as follows:
- Deputy Chancellor (ex-officio);
- Chair of the Finance Committee (ex-officio);
- Four (4) lay members elected by and from the UNE Council. At least one of the lay members will have relevant skills and experience in relation to the Committee's key objectives;
- One (1) external member who is not the Chair of the Audit and Risk Committee, appointed by Council for a period of 12 months from the time of appointment (membership is renewable).
- Up to two (2) lay Council members may be co-opted from Council to the Committee by the Chair in order to meet the Committee's stated gender representation objectives.
- The Vice-Chancellor and any other non-lay representative from Council and nominated by Council shall be entitled to attend and participate (but not vote) at each Committee meeting. The attendance and participation of the Vice-Chancellor or any other non-lay representative from Council and nominated by Council shall continue at the discretion of the Chair.
- The Council has had regard to NSW Treasury Policy (TPP 15-03) Core Requirement Section 3 in setting the membership of the Audit and Risk Committee. Whilst not binding on the University, the Council has considered its principles as an example of best practice in the public sector.
(7) Official attendees:
- University Secretary and/or nominee;
- Relevant Senior Executive(s) and/or nominee (unless the Chair directs otherwise); and
- Director, Audit and Risk.
- Any other person invited by the Chair; and
- Council may appoint up to two external members with appropriate professional expertise and experience to the Committee and on the recommendation of the Committee.
(9) The Committee will elect the Chair from its Lay members. The Chair will hold office for the remainder of their term on the Committee, or until removed by the Committee, whichever occurs first. If the Chair is unavailable to act as Chair for any period then the Committee will elect a temporary Chair to act during that period.
Gender representative objectives
(10) The objective will be to ensure, so far as is practicable, that the membership of the Committee includes the following gender representation:
- Where the Committee has five or more members, at least two of each gender; and
- Where the Committee has four or less members, at least one of each gender.
Election procedure for elected members
(11) Elected members of the Committee will be elected by Council at a Council meeting.
Term of office
(12) The ex-officio members (Deputy Chancellor and Chair of the Finance Committee) will be Committee members whilst they hold their primary office.
(13) The lay Council members will be Committee members for two years or such other time as determined by Council, or until they cease to be a Council member, whichever occurs first.
(14) The co-opted external members (if applicable) will be Committee members for twelve months or such other time as determined by Council, or until they resign or are removed by Council, whichever occurs first.
(15) The co-opted Council members (if applicable) will be Committee members for two years or such other time as determined by Council, or until they cease to be a Council member, whichever occurs first.
Section 3 - Terms of reference
(16) Approval functions:
- Approve Council policies relating to the function of internal audit, risk management, compliance, business continuity and fraud within UNE, including the Audit and Risk Directorate's Operational and Strategic Plans and the annual timetable of audits to be conducted; and
- Approve the Internal Audit Charter.
(17) Advisory and Monitoring Functions:
- Advise Council in relation to the matters referred to within the scope of this Committee's objectives; and
- As detailed below in the Section, "Roles and responsibilities".
- The Committee has no executive powers;
- As detailed below in the Sections, "Delegations" and "Authority";
- The Committee is directly responsible and accountable to the Council for the exercise of its responsibilities. In carrying out its responsibilities, the Committee must at all times recognise that responsibility for management of the University of New England rests with the Vice-Chancellor;
- Resolve any disagreements between management and the auditor; and
- The responsibilities of the Committee may be revised or expanded in consultation with, or as requested by, the Council from time to time.
Section 4 - Delegations
Delegation from Council
(19) This committee has delegated authority from the UNE Council to perform on behalf of Council the approval, advice and monitoring functions set out in the Terms of reference above.
Section 5 - Authority
(20) The Council authorises the Committee, within the scope of its role and responsibilities, to:
- obtain any information it needs from any employee and/or external party (subject to their legal obligation to protect information);
- discuss any matters with the external auditor, or other external parties (subject to confidentiality considerations);
- request the attendance of any employee, as required, at Committee meetings;
- obtain external legal or other professional advice, as considered necessary to meet its responsibilities, at the University of New England's expense.
Section 6 - Roles and responsibilities
(21) The Committee's responsibilities are to:
- Assess Internal Audit Activity
- act as a forum for communication between the Council, senior management and internal and external audit;
- review the annual Internal Audit Plan to ensure :
- the Plan is based on UNE's risk management framework; and
- the Plan provides optimal cost-effective internal audit coverage of operations and reporting arrangements for the University; ;
- oversee the coordination of audit programs conducted by internal and external audit and other review functions;
- review all audit reports and provide advice to the Council on significant issues identified in audit reports and action taken on issues raised, including identification and dissemination of good practice;
- monitor management's implementation of internal audit recommendations;
- review and assess the performance of the Internal Audit operations against the annual and strategic audit plans;
- review the internal audit charter to ensure appropriate organizational structures, authority, access and reporting arrangements are in place;
- review the adequacy of the Internal Audit charter, organisation, staffing, skills and training; and
- monitor developments within the audit field and the standards issued by professional bodies and other regulatory authorities, in order to encourage the use of best practice by the Audit and Risk Directorate;
- Oversee Risk Management
- review the currency, comprehensiveness and relevance of the University's Risk Management Rule, including the identification and management of risks related to fraud and business continuity;
- endorse the University's strategic risk register;
- review whether a sound and effective approach has been followed in developing strategic risk management plans for major projects or undertakings;
- review the impact of the University of New England's risk management process on its control environment and insurance arrangements;
- review whether a sound and effective approach has been followed in establishing the University of New England's business continuity planning arrangements, including whether disaster recovery plans have been tested periodically;
- review the University of New England's fraud control plan and satisfy itself that the University of New England has appropriate processes and systems in place to capture and effectively investigate fraud related information;
- ensure that risk identification and linked audit activities are addressed in the development and review of internal audit plans, and in discussions on external audit strategies; and
- monitor the implementation of risk management across the University;
- Control Framework
- review whether management's approach to maintaining an effective internal control framework, including over external parties such as contractors and advisors, is sound and effective;
- review whether management has in place relevant policies and procedures, and that these are periodically reviewed and updated, including:
- Monitor the effectiveness of Management's strategies for and risk management of information technology systems and service delivery;
- Monitor the effectiveness of Management's strategies for and risk management of the maintenance, repair and replacement of buildings and other physical assets; and
- Monitor the effectiveness of Management's strategies for and risk management of the provision of safety and security, utilities and other services on campus.
- determine whether the appropriate processes are in place to assess, at least once a year, whether policies and procedures are complied with;
- satisfy itself that appropriate policies and procedures are in place for the management and exercise of delegations;
- consider how management identifies any required changes to the design or implementation of internal controls; and
- review whether management has taken steps to embed a culture which is committed to ethical and lawful behaviour;
- Financial Statements
- satisfy itself that the financial statements have been effectively audited and reviewed, including whether appropriate action has been taken in response to audit recommendations and adjustments;
- provide advice to Council regarding the Committee's review of the process used for the preparation of the financial statements;
- satisfy itself that the financial statements are supported by appropriate management signoff on the statements and on the adequacy of the systems of internal controls;
- review the processes in place designed to ensure that financial information included in the University of New England's annual report is consistent with the signed financial statements;
- review significant accounting and reporting issues, including complex or unusual transactions, and understand their impact on the financial statements;
- review the currency, comprehensiveness and relevance of the University's Compliance Rule;
- determine whether management has appropriately considered compliance risks as part of the University of New England's risk assessment and management arrangements;
- review the effectiveness of the University's compliance system for addressing UNE's compliance obligations; and
- review the effectiveness of the system for monitoring the University of New England's Controlled Entities compliance with applicable laws and regulations, and associated government policies;
- External Audit
- act as a forum for communication between the University of New England, senior management and internal and external audit;
- provide input and feedback on the financial statements and performance audit coverage proposed by external audit and provide feedback on the audit services provided;
- review all external plans and reports in respect of planned or completed audits and monitor management's implementation of audit recommendations; and
- provide advice to the Council on action taken on significant issues raised in relevant external audit reports and better practice guides;
- Responsibilities of Members
- members are expected to:
- contribute the time needed to study and understand the papers provided;
- apply good analytical skills, objectivity and good judgement; and
- express opinions frankly, ask questions that go to the fundamental core of the issue and pursue independent lines of enquiry.
Section 7 - Reporting
(22) The Committee will regularly (at least once a year) report to the Council on its operation and activities during the year. The report should include:
- a summary of the work the Committee performed to fully discharge its responsibilities during the preceding year;
- a summary of the University of New England's progress in addressing the findings and recommendations made in internal and external reports;
- an overall assessment of the University of New England's risk, control and compliance framework, including details of any significant emerging risks or legislative changes impacting the University of New England; and
- details of meetings, including the number of meetings held during the relevant period, and the number of meetings each member attended.
(23) The Committee may at any time, report to the Council any other matter it deems of sufficient importance to do so.
Section 8 - Reporting lines
(24) The Committee must at all times ensure it maintains a direct reporting line to and from the Director, Audit and Risk and act as a mechanism for reporting internal audit activity to the Council, as appropriate.
(25) The Director, Audit and Risk, reports functionally to the Audit and Risk Committee and the Chief Legal & Governance Officer and administratively to the Chief Legal & Governance Officer to facilitate day to day operations. If required, the Director, Audit and Risk, has the ability to report directly to the Vice-Chancellor and to Council through the Chancellor and the Audit and Risk Committee through the Chair.
Section 9 - Conduct of Committee business
Reporting to Council
(26) The Chair of the Committee will report to Council regularly on the business conducted by the Committee.
(27) The Committee will meet bi-monthly, or otherwise as required in order to perform its functions. Committee members should be given at least seven days' notice of meeting, or such shorter notice period as is practicable where the matter is urgent.
(28) A work plan, including meeting dates and agenda items, will be agreed by the Committee each year.
(29) The Committee will meet separately of management with the internal and external auditors at least once a year.
(30) A meeting separate of management between the Committee and the Director, Audit and Risk may be convened by the Chair of the Audit and Risk Committee if required.
(31) Unless the Chair directs otherwise, Committee business papers will be distributed to Committee members and official attendees, at least seven days prior to the meeting, or such shorter period as is practicable in the circumstances. Business papers must be treated confidentially by recipients. Any external disclosure of business papers should be made via the University Secretary.
(32) A quorum shall consist of a simple majority of the members of the Committee at the time the meeting is held.
Use of technology
(33) For its business papers, meetings and otherwise to conduct its business the Committee and its members may use technology including telephone, video-conferencing, telepresence, email and internet as arranged by the Chair and/or University Secretary.
(34) The Committee may pass a resolution by "flying minute" provided that the resolution has been approved by a simple majority of the Committee members at the time the resolution is made.
Confirmation of minutes
(35) Draft minutes will normally be circulated to members for comment promptly after each meeting. Next the minutes (with any necessary changes) will be circulated for adoption by the Committee. The minutes will be finalised and adopted when they have been approved by a majority of the members present at the relevant meeting. Alternatively, the minutes may be included in the business papers for the next Committee meeting and considered/adopted by the Committee at that meeting.
(36) Once in every twelve-month period, the Committee shall devote at least part of one meeting to the review of its policies, practices and procedures over the preceding 12 months. The review will be conducted on a self-assessment basis (unless otherwise determined by the Council) with appropriate input sought from the Council, the internal and external auditors, management and any other relevant stakeholders, as determined by the Council.
Secretary to Committee
(37) The University Secretary and/or nominee will act as secretary and provide administrative support to the Committee.
(38) To the extent of any inconsistencies between these Terms of Reference and the Council's Standing Orders, these Terms of Reference prevail.
(39) Members of the Committee and the University of New England's management should maintain an effective working relationship, and seek to resolve differences by way of open negotiation. However, in the event of a disagreement between the Committee and management, including the Vice-Chancellor, the Chair may, as a last resort, refer the matter to the Council.
Conflicts of interest
(40) Once a year the Committee members will provide written declarations to the Council stating they do not have any conflicts of interest that would preclude them from being members of the Committee.
(41) Committee members must declare any conflicts of interest at the start of each meeting or before discussion of the relevant agenda item or topic. Details of any conflicts of interest should be appropriately minuted. In these circumstances, it may be appropriate to excuse the relevant member(s) from Committee deliberations on the item or topic where a conflict of interest exists.
(42) New members will receive relevant information and briefings on their appointment to assist them to meet their Committee responsibilities.
Review of charter
(43) At least once a year the Committee will review this Charter. This review will include consultation with the Council. Any substantive changes to this Charter will be recommended by the Committee and formally approved by the Council.
Section 10 - Definitions and interpretation
(44) Words and phrases used in this document have the following meanings, unless the context requires otherwise:
- Current Employee means a person who is at the time an Employee.
- Current Student means a person who is at the time a Student and who is enrolled in one or more units.
- Employee means a person who is employed by the University on a continuing, fixed term, casual, contract or other basis.
- Lay means a person who is not a Current Employee or Current Student.
- Management means the Vice-Chancellor and their staff.
- Senior Executive means the Vice-Chancellor and their direct reports (excluding support staff).
- Senior Manager means staff at Head of School or Director level and above (including the Senior Executive).
- Student means a person who has been accepted into a course at the University and is entitled to enrol in units for the purposes of that course.
- UNE Act means the University of New England Act 1993 (NSW).
- UNE By-law means the University of New England By-law 2005 (NSW).
(45) This document should be interpreted using the following principles:
- Where Committee membership is defined by reference to an office held (for example "Chair of Finance Committee"), that office-bearer is a member ex-officio and has all of the same rights and responsibilities (including voting) as other Committee members whilst holding the office specified.
- This document does not override or otherwise affect:
- the Authorities Retained by Council Rule; or
- the Functions of the Vice-Chancellor Rule; however it operates as a delegation of certain authorities that have been retained by Council.