Audit, Risk and Improvement Committee Terms of Reference
Eurobodalla Shire Council has established an Audit, Risk and Improvement Committee in compliance with section 428A of the Local Government Act 1993, the Local Government (General) Regulation 2021 and the Office of Local Government’s Guidelines for risk management and internal audit for local government in NSW. These terms of reference set out the committee’s objectives, authority, composition and tenure, roles and responsibilities, reporting and administrative arrangements.
Objectives
The objective of Eurobodalla Shire Council’s Audit, Risk and Improvement Committee is to provide independent assurance to Eurobodalla Shire Council by monitoring, reviewing and providing advice about the Eurobodalla Shire Council’s governance processes, compliance, risk management and control frameworks, external accountability obligations and overall performance.
Independence
The committee is to be independent to ensure it has no real or perceived bias or conflicts of interest that may interfere with its ability to act independently and to provide Eurobodalla Shire Council with robust, objective and unbiased advice and assurance.
The committee is to have an advisory and assurance role only and is to exercise no administrative functions, delegated financial responsibilities or any management functions of the Eurobodalla Shire Council. The committee will provide independent advice to the Eurobodalla Shire Council that is informed by the Eurobodalla Shire Council internal audit and risk management activities and information and advice provided by staff, relevant external bodies and subject matter experts.
The committee must always ensure it maintains a direct reporting line to and from the Eurobodalla Shire Council internal audit function and act as a mechanism for internal audit to report to the governing body and the General Manager on matters affecting the performance of the internal audit function.
Authority
Eurobodalla Shire Council authorises the committee, for the purposes of exercising its responsibilities, to:
- access any information it needs from the Eurobodalla Shire Council
- use any Eurobodalla Shire Council resources it needs
- have direct and unrestricted access to the General Manager and senior management of the Eurobodalla Shire Council
- seek the General Manager permission to meet with any other Eurobodalla Shire Council staff member or contractor
- discuss any matters with the external auditor or other external parties
- request the attendance of any employee at committee meetings, and
- obtain external legal or other professional advice in line with councils’ procurement policies.
Information and documents pertaining to the committee are confidential and are not to be made publicly available. The committee may only release Eurobodalla Shire Council information to external parties that are assisting the committee to fulfil its responsibilities with the approval of the General Manager, except where it is being provided to an external investigative or oversight agency for the purpose of informing that agency of a matter that may warrant its attention.
Composition and tenure
The committee consists of four independent members (including an independent chair) who have voting rights as required under the Guidelines for risk management and internal audit for local government in NSW.
The governing body is to appoint the chair and members of the committee. The composition of the committee will be determined post the recruitment process by Council resolution and once this occurs, this document will be updated.
All committee members must meet the independence and eligibility criteria prescribed in the Guidelines for risk management and internal audit for local government in NSW.
Members will be appointed for up to a four-year term. Members can be reappointed for one further term, but the total period of continuous membership cannot exceed eight years. This includes any term as chair of the committee. Members who have served an eight-year term (either as a member or as chair) must have a two-year break from serving on the committee before being appointed again. To preserve the committee’s knowledge of the Eurobodalla Shire Council, ideally, no more than one member should retire from the committee because of rotation in any one year.
The terms and conditions of each member’s appointment to the committee are to be set out in a letter of appointment. New members will be thoroughly inducted to their role and receive relevant information and briefings on their appointment to assist them to meet their responsibilities.
Prior to approving the reappointment or extension of the chair’s or an independent member’s term, the governing body is to undertake an assessment of the chair’s or committee member’s performance. Reappointment of the chair or a committee member is also to be subject to that person still meeting the independence and eligibility requirements.
Members of the committee must possess and maintain a broad range of skills, knowledge and experience relevant to the operations, governance and financial management of the Eurobodalla Shire Council, the environment in which the Eurobodalla Shire Council operates, and the contribution that the committee makes to the Eurobodalla Shire Council. At least one member of the committee must have accounting or related financial management experience with an understanding of accounting and auditing standards in a local government environment. All members should have sufficient understanding of the Eurobodalla Shire Council financial reporting responsibilities to be able to contribute to the committee’s consideration of the Eurobodalla Shire Council annual financial statements.
Role
As required under section 428A of the Local Government Act 1993 (the Act), the role of the committee is to review and provide independent advice to the Eurobodalla Shire Council regarding the following aspects of the Eurobodalla Shire Council’s operations:
- compliance
- risk management
- fraud control
- financial management
- governance
- implementation of the strategic plan, delivery program and strategies
- service reviews
- collection of performance measurement data by the Eurobodalla Shire Council’s, and
- internal audit.
The committee must also provide information to the Eurobodalla Shire Council for the purpose of improving the Eurobodalla Shire Council’s performance of its functions.
The committee’s specific audit, risk and improvement responsibilities under section 428A of the Act are outlined in Schedule 1 to this charter.
The committee will act as a forum for consideration of the Eurobodalla Shire Council’s internal audit function and oversee its planning, monitoring and reporting to ensure it operates effectively.
The committee has no power to direct external audit or the way it is planned and undertaken but will act as a forum for the consideration of external audit findings.
The committee is directly responsible and accountable to the governing body for the exercise of its responsibilities. In carrying out its responsibilities, the committee must at all times recognise that primary responsibility for management of the Eurobodalla Shire Council’s rests with the governing body and the General Manager.
The responsibilities of the committee may be revised or expanded in consultation with, or as requested by, the governing body from time to time.
Responsibilities of members
Independent members
The chair and members of the committee are expected to understand and observe the requirements of the Guidelines for risk management and internal audit for local government in NSW. Members are also expected to:
- make themselves available as required to attend and participate in meetings
- contribute the time needed to review and understand information provided to it
- apply good analytical skills, objectivity and judgement
- act in the best interests of the Eurobodalla Shire Council
- have the personal courage to raise and deal with tough issues, express opinions frankly, ask questions that go to the fundamental core of the issue and pursue independent lines of inquiry
- maintain effective working relationships with the Eurobodalla Shire Council
- have strong leadership qualities (chair)
- lead effective committee meetings (chair), and
- oversee the Eurobodalla Shire Council internal audit function (chair).
Conduct
Independent committee members are required to comply with the Eurobodalla Shire Council code of conduct.
Complaints alleging breaches of the Eurobodalla Shire Council code of conduct by an independent committee member are to be dealt with in accordance with the Procedures for the Administration of the Model Code of Conduct for Local Councils in NSW. The General Manager must consult with the governing body before taking any disciplinary action against an independent committee member in response to a breach of the Eurobodalla Shire Council’s code of conduct.
Conflicts of interest
Once a year, committee members must provide written declarations to the Eurobodalla Shire Council’s stating that they do not have any conflicts of interest that would preclude them from being members of the committee. Independent committee members are ‘designated persons’ for the purposes of the Eurobodalla Shire Council’s code of conduct and must also complete and submit returns of their interests .
Committee members and observers must declare any pecuniary or non-pecuniary conflicts of interest they may have in a matter being considered at the meeting at the start of each meeting or as soon as they become aware of the conflict of interest. Where a committee member or observer declares a pecuniary or a significant non-pecuniary conflict of interest,
they must remove themselves from committee deliberations on the issue. Details of conflicts of interest declared at meetings must be appropriately minuted.
Standards
Committee members are to conduct their work in accordance with the International Standards for the Professional Practice of Internal Auditing issued by the Institute of Internal Auditors and ISO 31000, the international standard for risk management, where applicable.
Work plans
The work of the committee is to be thoroughly planned and executed. The committee must develop a strategic work plan every four years to ensure that the matters listed in Schedule 1 are reviewed by the committee and considered by the internal audit function when developing their risk-based program of internal audits. The strategic work plan must be reviewed at least annually to ensure it remains appropriate.
The committee may, in consultation with the governing body, vary the strategic work plan at any time to address new or emerging risks. The governing body may also, by resolution, request the committee to approve a variation to the strategic work plan. Any decision to vary the strategic work plan must be made by the committee.
The committee must also develop an annual work plan to guide its work, and the work of the internal audit function over the forward year.
The committee may, in consultation with the governing body, vary the annual work plan to address new or emerging risks. The governing body may also, by resolution, request the committee to approve a variation to the annual work plan. Any decision to vary the annual work plan must be made by the committee.
When considering whether to vary the strategic or annual work plans, the committee must consider the impact of the variation on the internal audit function’s existing workload and the completion of pre-existing priorities and activities identified under the work plan.
Assurance reporting
The committee must regularly report to the Eurobodalla Shire Council to ensure that it is kept informed of matters considered by the committee and any emerging issues that may influence the strategic direction of the Eurobodalla Shire Council or the achievement of the Eurobodalla Shire Council’s goals and objectives.
The committee will provide an update to the governing body and the General Manager of its activities and opinions after every committee meeting.
The committee will provide an annual assessment to the governing body and the General Manager on the committee’s work and its opinion on how the Eurobodalla Shire Council is performing.
The committee will provide a comprehensive assessment every council term of the matters listed in Schedule 1 to the governing body and the General Manager.
The committee may at any time report to the governing body or the General Manager on any other matter it deems of sufficient importance to warrant their attention. The Mayor and the chair of the committee may also meet at any time to discuss issues relating to the work of the committee.
Should the governing body require additional information, a request for the information may be made to the chair by resolution. The chair is only required to provide the information requested by the governing body where the chair is satisfied that it is reasonably necessary for the governing body to receive the information for the purposes of performing its functions under the Local Government Act. Individual Eurobodalla Shire Councillors are not entitled to request or receive information from the committee.
Administrative arrangements
Meetings
The committee will meet at least a minimum of 4 times per year. Special meeting(s) may be required to review the financial statements.
The committee can hold additional meetings when significant unexpected issues arise, or if the chair is asked to hold an additional meeting by a committee member, the General Manager or the governing body.
Committee meetings can be held in person, by telephone or videoconference. Proxies are not permitted to attend meetings if a committee member cannot attend.
A quorum will consist of a majority of independent voting members. Where the vote is tied, the chair has the casting vote.
The chair of the committee will decide the agenda for each committee meeting. Each committee meeting is to be minuted to preserve a record of the issues considered and the actions and decisions taken by the committee.
The General Manager and the Director of Finance and Corporate Services should attend committee meetings as non-voting observers. The external auditor (or their representative) is to be invited to each committee meeting as an independent observer. The chair can request the Eurobodalla Shire Council [chief finance officer or equivalent], [head of risk management function or equivalent], [senior managers or equivalent], any Councillors, any employee/contractor of the council and any subject matter expert to attend committee meetings. Where requested to attend a meeting, persons must attend the meeting where possible and provide any information requested. Observers have no voting rights and can be excluded from a meeting by the chair at any time.
The committee can hold closed meetings whenever it needs to discuss confidential or sensitive issues with only voting members of the committee present.
The committee must meet separately with the head of the internal audit function and the Eurobodalla Shire Council external auditor at least once each year .
Dispute resolution
Members of the committee and the Eurobodalla Shire Council’s management should maintain an effective working relationship and seek to resolve any differences they may have in an amicable and professional way by discussion and negotiation.
In the event of a disagreement between the committee and the General Manager or other senior managers, the dispute is to be resolved by the governing body.
Unresolved disputes regarding compliance with statutory or other requirements are to be referred to the Departmental Chief Executive in writing.
Secretariat
The General Manager will nominate a staff member to provide secretariat support to the committee. The secretariat will ensure the agenda for each meeting and supporting papers are circulated after approval from the chair at least one week before the meeting and ensure that minutes of meetings are prepared and maintained. Minutes must be approved by the chair and circulated within one week of the meeting to each member.
Resignation and dismissal of members
Where the chair or a committee member is unable to complete their term or does not intend to seek reappointment after the expiry of their term, they should give four weeks’ notice to the chair and the governing body prior to their resignation to allow the Eurobodalla Shire Council to ensure a smooth transition to a new chair or committee member.
The governing body can, by resolution, terminate the appointment of the chair or an independent committee member before the expiry of their term where that person has:
- breached the council’s code of conduct
- performed unsatisfactorily or not to expectations
- declared, or is found to be in, a position of a conflict of interest which is unresolvable
- been declared bankrupt or found to be insolvent
- experienced an adverse change in business status
- been charged with a serious criminal offence
- been proven to be in serious breach of their obligations under any legislation, or
- experienced an adverse change in capacity or capability.
The position of a Councillor member on the committee can be terminated at any time by the governing body by resolution.
Review arrangements
At least once every council term, the governing body must review or arrange for an external review of the effectiveness of the committee.
These terms of reference must be reviewed annually by the committee and once each council term by the governing body. Any substantive changes are to be approved by the governing body.
Further Information
For further information on Eurobodalla Shire Council’s Audit, Risk and Improvement Committee, contact the Director of Finance and Corporate Services on council@esc.nsw.gov.au or by phone 02 4474 1000.
Schedule 1 – Audit, Risk and Improvement Committee responsibilities
Audit
Internal audit
- Provide overall strategic oversight of internal audit activities
- Act as a forum for communication between the governing body, General Manager, senior management, the internal audit function and external audit
- Coordinate, as far as is practicable, the work programs of internal audit and other assurance and review functions
- Review and advise the Eurobodalla Shire Council:
- on whether the Eurobodalla Shire Council is providing the resources necessary to successfully deliver the internal audit function
- if the Eurobodalla Shire Council is complying with internal audit requirements, including conformance with the International Professional Practices Framework
- if the Eurobodalla Shire Council internal audit charter is appropriate and whether the internal audit policies and procedures and audit/risk methodologies used by the Eurobodalla Shire Council are suitable
- of the strategic four-year work plan and annual work plan of internal audits to be undertaken by the Eurobodalla Shire Council internal audit function
- if the Eurobodalla Shire Council internal audit activities are effective, including the performance of the head of the internal audit function and the internal audit function
- of the findings and recommendations of internal audits conducted, and corrective actions needed to address issues raised
- of the implementation by the Eurobodalla Shire Council of these corrective actions
- on the appointment of the head of the internal audit function and external providers, and
- if the internal audit function is structured appropriately and has sufficient skills and expertise to meet its responsibilities.
External audit
- Act as a forum for communication between the governing body, General Manager, senior management, the internal audit function and external audit
- Coordinate as far as is practicable, the work programs of internal audit and external audit
- Provide input and feedback on the financial statement and performance audit coverage proposed by external audit and provide feedback on the audit services provided
- Review all external plans and reports in respect of planned or completed audits and monitor council’s implementation of audit recommendations
- Provide advice to the governing body and/or General Manager on action taken on significant issues raised in relevant external audit reports and better practice guides.
Risk
Risk management
Review and advise the Eurobodalla Shire Council:
- if the Eurobodalla Shire Council has in place a current and appropriate risk management framework that is consistent with the Australian risk management standard
- whether the Eurobodalla Shire Council is providing the resources necessary to successfully implement its risk management framework
- whether the Eurobodalla Shire Council risk management framework is adequate and effective for identifying and managing the risks the Eurobodalla Shire Council faces, including those associated with individual projects, programs and other activities
- if risk management is integrated across all levels of the Eurobodalla Shire Council and across all processes, operations, services, decision-making, functions and reporting
- of the adequacy of risk reports and documentation, for example, the Eurobodalla Shire Council risk register and risk profile
- whether a sound approach has been followed in developing risk management plans for major projects or undertakings
- whether appropriate policies and procedures are in place for the management and exercise of delegations
- if the Eurobodalla Shire Council has taken steps to embed a culture which is committed to ethical and lawful behaviour
- if there is a positive risk culture within the Eurobodalla Shire Council and strong leadership that supports effective risk management
- of the adequacy of staff training and induction in risk management
- how the Eurobodalla Shire Council risk management approach impacts on the Eurobodalla Shire Council insurance arrangements
- of the effectiveness of the Eurobodalla Shire Council management of its assets, and
- of the effectiveness of business continuity arrangements, including business continuity plans, disaster recovery plans and the periodic testing of these plans.
Internal controls
Review and advise the Eurobodalla Shire Council:
- whether the Eurobodalla Shire Council approach to maintaining an effective internal audit framework, including over external parties such as contractors and advisors, is sound and effective
- whether the Eurobodalla Shire Council has in place relevant policies and procedures and that these are periodically reviewed and updated
- whether appropriate policies and procedures are in place for the management and exercise of delegations
- whether staff are informed of their responsibilities and processes and procedures to implement controls are complied with
- if the Eurobodalla Shire Council monitoring and review of controls is sufficient, and
- if internal and external audit recommendations to correct internal control weaknesses are implemented appropriately.
Compliance
Review and advise the Eurobodalla Shire Council of the adequacy and effectiveness of the Eurobodalla Shire Council compliance framework, including:
- if the Eurobodalla Shire Council has appropriately considered legal and compliance risks as part of the Eurobodalla Shire Council risk management framework
- how the Eurobodalla Shire Council manages its compliance with applicable laws, regulations, policies, procedures, codes, and contractual arrangements, and
- whether appropriate processes are in place to assess compliance.
Fraud and corruption
Review and advise the Eurobodalla Shire Council of the adequacy and effectiveness of the Eurobodalla Shire Council fraud and corruption prevention framework and activities, including whether the Eurobodalla Shire Council has appropriate processes and systems in place to capture and effectively investigate fraud-related information.
Financial management
Review and advise the Eurobodalla Shire Council:
- if the Eurobodalla Shire Council is complying with accounting standards and external accountability requirements
- of the appropriateness of the Eurobodalla Shire Council accounting policies and disclosures
- of the implications for the Eurobodalla Shire Council of the findings of external audits and performance audits and the Eurobodalla Shire Council responses and implementation of recommendations
- whether the Eurobodalla Shire Council financial statement preparation procedures and timelines are sound
- the accuracy of the Eurobodalla Shire Council annual financial statements prior to external audit, including:
- management compliance/representations
- significant accounting and reporting issues
- the methods used by the Eurobodalla Shire Council to account for significant or unusual transactions and areas of significant estimates or judgements
- appropriate management signoff on the statements
- if effective processes are in place to ensure financial information included in the Eurobodalla Shire Council annual report is consistent with signed financial statements
- if the Eurobodalla Shire Council financial management processes are adequate
- the adequacy of cash management policies and procedures
- if there are adequate controls over financial processes, for example:
- appropriate authorisation and approval of payments and transactions
- adequate segregation of duties
- timely reconciliation of accounts and balances
- review of unusual and high value purchases
- if policies and procedures for management review and consideration of the financial position and performance of the Eurobodalla Shire Council are adequate
- if the Eurobodalla Shire Council grants and tied funding policies and procedures are sound.
Governance
Review and advise the Eurobodalla Shire Council regarding its governance framework, including the Eurobodalla Shire Council:
- decision-making processes
- implementation of governance policies and procedures
- reporting lines and accountability
- assignment of key roles and responsibilities
- committee structure
- management oversight responsibilities
- human resources and performance management activities
- reporting and communication activities
- information and communications technology (ICT) governance, and
- management and governance of the use of data, information and knowledge.
Improvement
Strategic planning
Review and advise the Eurobodalla Shire Council:
- of the adequacy and effectiveness of the Eurobodalla Shire Council integrated, planning and reporting (IP&R) processes
- if appropriate reporting and monitoring mechanisms are in place to measure progress against objectives, and
- whether the Eurobodalla Shire Council is successfully implementing and achieving its IP&R objectives and strategies.
Service reviews and business improvement
- Act as a forum for communication and monitoring of any audits conducted by external bodies and the implementation of corrective actions (for example, NSW government agencies, Commonwealth government agencies, insurance bodies)
- Review and advise the Eurobodalla Shire Council:
- If the Eurobodalla Shire Council has robust systems to set objectives and goals to determine and deliver appropriate levels of service to the community and business performance
- if appropriate reporting and monitoring mechanisms are in place to measure service delivery to the community and overall performance, and
- how the Eurobodalla Shire Council can improve its service delivery and the Eurobodalla Shire Council performance of its business and functions generally.
Performance data and measurement
Review and advise the Eurobodalla Shire Council:
- if the Eurobodalla Shire Council has a robust system to determine appropriate performance indicators to measure the achievement of its strategic objectives
- if the performance indicators the Eurobodalla Shire Council uses are effective, and
- of the adequacy of performance data collection and reporting.