Internal Audit Department
Our Work

The objective of the Internal Audit department is to determine whether Management's network of risk management, governance processes and internal controls is adequate and functioning in a manner to ensure that:

  1. Risks are appropriately identified and managed;
  2. Interaction of the various governance groups occurs as needed;
  3. Significant financial, managerial and operating information is accurate, reliable and timely;
  4. Employees conduct themselves in compliance with policies, applicable laws and regulations;
  5. Resources are acquired economically, used efficiently and adequately safeguarded;
  6. Quality and continuous improvement are fostered;
  7. Significant regulatory issues are recognized and addressed appropriately; and
  8. The strategic objectives of the University are being attained.

Below are ways in which the Office of Internal Audit assures that McMaster's Audit objectives come to life.

To learn more about how we can help or report fraudulent or unethical behaviour, please contact the Chief Internal Auditor at

Ethics Point - Integrity at Work

What is Safe Disclosure?

McMaster is committed to the highest standards of integrity. It is our policy to investigate any alleged dishonest or fraudulent activities related to funds or property owned by, or in the care of, the University. Click on the above link to assist you in providing a better understanding of McMaster's policies and procedures and to provide a process for voicing your concerns.

Terms of Reference

Terms of Reference

The Board of Governors By-Law No. 1, section 15, sub-section 3(a) states:

The Audit Committee shall be composed of the Chair and the Vice-Chair(s) of the Board, and a minimum of three other members of the Board. Notwithstanding any other provisions in the By-laws, in any event, every Audit Committee member shall be an independent, external and unrelated Governor (not employed by the University or enrolled in a course of study at the University). Every Audit Committee member will also be a member of the Finance Committee. Members of the Audit Committee shall be financially literate, with the ability to read and understand financial statements of the breadth and complexity comparable to those of the University. At least one member of the Committee shall have accounting or related financial management expertise. The Chair of the Committee shall be the Chair or the Vice Chair of the Finance Committee.

One half of the membership of the Committee shall constitute a quorum.

The following individuals will normally be invited to attend Audit Committee meetings: the President, the Vice-President (Administration), the Chief Internal Auditor, and the Assistant Vice-President (Administration).

Meetings shall be held as required or upon the request of a member of the Audit Committee or of the University's internal or external auditors. The Committee Chair shall review an agenda in advance of each meeting.

The Audit Committee assists the Board in fulfilling its oversight responsibilities for the financial reporting process, the system of internal control, the audit process, and the University's processes for monitoring compliance with laws, regulations and University policies.

Primary Responsibilities

Financial Statements

To oversee the system of internal control and the financial reporting process. In fulfilling this responsibility, the Committee shall:

1. Meet with the external auditors and review the results of the annual financial statement audit and approve such statements for recommendation to the Board;

2. Review other sections of the annual report, including Management's Discussion and Analysis, and any report or opinion that the auditors propose to render, and consider the accuracy and completeness of the information;

3. Review and discuss with management and the external auditors significant variances, estimates and accruals, judgments, changes in accounting policies and standards, issues concerning litigation or contingencies and any difficulties encountered;

4. Review any recent and relevant professional and regulatory pronouncements to understand their impact on the financial statements;

5. Review and discuss with management whether adequate procedures and processes are in place to ensure the integrity of the financial statements;

6. Review the appropriateness of significant accounting principles and practices, reporting issues, unusual or extraordinary items, transactions with related parties and the adequacy of disclosures; and

7. Consider whether the financial statements are complete and consistent with information known to Committee members.
Internal Control

To oversee the internal control structure and processes, the Committee shall:

1. Review with management and the internal and external auditors, their evaluation of the University's internal controls and processes, including internal controls over financial reporting and any material weaknesses or fraud and assess the steps management has taken to minimise significant risks or exposures; and

2. Consider the effectiveness of the internal control system, including information technology security and control.
External Audit

To oversee the external audit process, the Committee shall:

1. Select and recommend annually the public accountants for appointment as auditors for the ensuing fiscal year and, in consultation with the administration, the basis of their compensation;

2. Approve the engagement letter, receive the independence letter and review the management letter and related materials;

3. Review all matters required to be communicated to the Committee under Generally Accepted Auditing Standards;

4. Review with the external auditors their findings, any restrictions on their work, cooperation received, and their recommendations and facilitate the resolution of any disagreements between management and the external auditors;

5. Receive privately the external auditors' opinion on various matters, including the quality and effectiveness of financial and internal audit staff, significant accounting principles and practices, unresolved material differences of opinion or disputes;

6. Discuss with the external auditors the scope and purpose of the upcoming audit and the procedures to be followed including coordination with internal audit;

7. Periodically review and approve a policy governing the engagement of the external auditors for the provision of non-audit services; and

8. Annually review and assess the independence and performance of the external auditors.
Internal Audit

To oversee the internal audit function and reports, the Committee shall:

1. Review with the senior internal audit officer a summary of findings, any restrictions or limitations on his or her work, cooperation received, special investigation reports, findings from third party auditors (not including work performed by the appointed external auditors), and any recommendations arising therefrom;

2. Review the proposed audit plans for the coming year, the criteria upon which they are based and the coordination of services provided to the external auditors;

3. Periodically review and approve the internal audit mandate (the Internal Audit Department Policy Statement) for continued relevance;

4. Review audit progress, findings, recommendations, responses and follow-up actions; in situations where the auditee has not responded appropriately in a timely fashion to the audit findings, follow-up and obtain a management response on those action items which remain outstanding for a significant period of time;

5. Satisfy itself as to internal audit independence, cooperation received from management, interaction with external audit and any unresolved material disagreements with management;

6. Review the budget, organizational structure, and qualifications of the internal audit department; and

7. Through its Chair, act as the formal supervisor of the senior internal audit officer and in consultation with the President and the Vice-President (Administration), have the final approval to appoint or discharge the senior internal audit officer and complete an annual performance review of the senior internal audit officer; and

8. Periodically review the effectiveness of the internal audit activity.

To oversee compliance-related issues, the Committee shall:

1. Obtain regular updates from management and legal counsel regarding compliance and outstanding litigation matters;

2. Review the effectiveness of the system for monitoring compliance with laws and regulations and the results of management's investigation and follow-up (including disciplinary action) of instances of non-compliance;

3. Review the findings of any examinations by regulatory agencies; and

4. Review the process for communicating code of conduct policies to employees and monitoring compliance.
Risk Management

To oversee the risk management process, the Committee shall:

1. Review with management significant risk exposures and the steps management has taken to monitor and manage these risks;

2. Review periodic and annual reports relating to the entity-wide risk management process for identified risks and review the effectiveness of control systems used to monitor the risks;

3. Review with management and the internal and external auditors, policies with respect to risk assessment and management, control and governance;

4. Review incidents of fraud, illegal acts and conflicts of interest and retain independent counsel, accountants or others to advise or assist; and

5. Review the quality and accuracy of computerized accounting systems, the adequacy of the protection against damage and disruption and the security of confidential information through information systems reporting.

To fulfill its reporting responsibilities, the Committee shall:

1. Report to the Board of Governors as required about Committee activities, issues, and related recommendations;

2. Complete periodic self-assessments of the Audit Committee's effectiveness against its mandate and report any concerns to the Board;

3. Periodically review the Terms of Reference of the Audit Committee and recommend any proposed changes for consideration by the Board of Governors; and

4. Perform other activities as requested by the Board.
Other Duties

Other duties such as:

1. Oversee the work of any public accounting firm engaged by the University where such work would be defined as "public accounting" within the meaning of the standards of the Canadian Institute of Chartered Accountants;

2. Investigate any matter brought to its attention with full access to all books, records, facilities and personnel of the University; and

3. Review and ensure that procedures are in place for the receipt, retention and treatment of complaints regarding accounting, internal accounting controls or audit matters.
Members of the Audit Committee include those members of the Finance Committee who are not salaried employees of the University. The Audit Committee consists of the following members for July 1, 2016 to June 30, 2017:


1. P. Douglas (Chair & Finance Committee Chair)
2. C. Stefankiewicz (Vice-Chair)
3. B. Merkel
4. C. Keizer
5. T. Walker

Ex Officio:

1. J. Pike (Chair of the Board)
2. P. Douglas (Vice-Chair of the Board)


1. P. Deane (President)
2. R. Couldrey (Vice-President: Administration)
3. D. Henne (Assistant Vice-President: Administration and CFO)


1. T. Smith (Chief Internal Auditor)