Understanding the Mission
An audit committee should operate as the arm of the board of directors that assures proper financial management. As such, it’s an integral part of good governance, making it relevant for nonprofits of all sizes. After all, poor governance and accountability can cost any organization support—financial and otherwise.
The committee’s job largely comes down to oversight, which is usually focused on financial reporting, external and internal audit functions, compliance with legal and regulatory requirements and the internal controls over these areas. An effective audit committee can lead to improved financial practices and reporting, reduced fraud, and enhanced internal and external audits.
Smaller nonprofits may be tempted to assign audit committee functions to their finance committee, but that committee has different responsibilities—its task primarily is monitoring the budget and approving the distribution of the organization’s financial resources.
Overseeing Financial Reporting
The audit committee should take a much broader view, overseeing the conduct and integrity of financial reporting, including establishing and implementing accounting policies and internal controls to promote good financial stewardship. The goal is to protect the nonprofit’s assets, strengthen the reliability and accuracy of financial reporting, and reduce the risk of fraud.
On a practical level, financial reporting oversight translates to, among other things:
- Reviewing Form 990 and reporting to regulatory agencies.
- Looking for red flags in financial statements that might signal improper revenue recognition or other kinds of fraud (for example, unexplained fluctuations in revenues or expenses).
- Reviewing audit results, the nonprofit’s responses and follow-up actions.
- Evaluating the appropriateness of getting a second opinion on auditing issues.
Ultimately, the audit committee should ensure that all financial reports are accurate and transparently portray the organization’s performance.
The committee must understand the nonprofit’s overall risk profile (as determined by a comprehensive risk assessment). The risk profile considers, among other things, investment practices; disaster recovery plans; insurance coverage; and compliance with laws, regulations, and donor and grantor requirements. It also looks at internal policies and procedures. It evaluates the organization’s risks in light of its “appetite for risk.” The committee should assess internal controls over those risks and, if necessary, see that the organization effectively implements remedial measures.
Interacting With Auditors
The audit committee should regularly interact with both internal and external auditors, which includes approving the annual internal audit plan and reviewing internal auditors’ reports. The committee also may be responsible for approving the appointment of the head of internal audit.
Additionally, the audit committee is responsible for hiring, compensating and overseeing external auditors and is therefore considered the auditors’ client. It should have regular communications with the auditors, including meetings to discuss a work plan before the audit and to review any findings before they’re presented to the board.
Besides the roles and responsibilities described above, the committee must maintain its independence. That means audit committee members can’t accept any consulting, advisory or other compensatory fee from the organization.
Independence from management also is critical. Committee members shouldn’t have been an officer or employee of the nonprofit in the prior three years, or be the immediate family member of such a person.
The American Institute of Certified Public Accountants recommends that some audit committee members also be members of the board of directors. But some states limit the number of audit committee members who also are on the finance committee.
Better Safe Than Sorry
Audit committees may seem like just one more layer of bureaucracy, but they’re rapidly becoming a nonprofit “best practice.” Your CPA can help you establish a new committee or make sure that your existing committee is operating as it should.
Financial Expertise: An Audit Committee Necessity
The composition of nonprofit audit committees may vary, but one thing is certain —at least one member of the committee should have strong financial expertise.
The committee’s financial expert will bring a working knowledge of financial reporting (including accounting principles generally accepted in the United States of America) and internal controls. Bear in mind that it’s not enough that he or she have experience in the for-profit world—the expert should have knowledge of nonprofit-sector accounting and financial reporting issues.
And don’t make the mistake of turning to the organization’s treasurer. The audit committee is charged with independently monitoring financial results, so appointing the treasurer to the committee could create a conflict.
Lori Scott, CPA, is a partner in Lindquist LLP’s Seattle office. She has 18 years of experience in public accounting. Lori specializes in accounting and auditing services for not-for-profit organizations and employee benefit plans and has spent the majority of her career in these industries. Contact her at (206) 522-6370 or firstname.lastname@example.org with questions.
Our firm provides the information in this e-newsletter for general guidance only. It does not constitute the provision of legal advice, tax advice, accounting services, investment advice or professional consulting of any kind. The information provided herein should not be used as a substitute for consultation with professional tax, accounting, legal, or other competent advisers. Before making any decision or taking any action, you should consult a professional adviser who has been provided with all pertinent facts relevant to your particular situation. Tax articles in this e-newsletter are not intended to be used, and cannot be used by any taxpayer, for the purpose of avoiding accuracy-related penalties that may be imposed on the taxpayer. The information is provided "as is," with no assurance or guarantee of completeness, accuracy or timeliness of the information, and without warranty of any kind, express or implied, including but not limited to warranties of performance, merchantability and fitness for a particular purpose.