Internal Controls

Effective controls provide deans, department chairpersons, college and academic- support unit fiscal officers, central offices, and the Board of Trustees with reasonable assurance that institutional objectives have been achieved through sound financial management.  Please refer to the university’s Fiscal Stewardship Policy for additional details.  

The Fiscal Stewardship Policy outlines all Delegation of Signature Authority Structure requirements.  Please see the Signature Authority Guidance for additional information.

Internal Audit is available to assist departments with financial/operational audits, information systems audits and compliance with established procedures and laws. Consult Internal Audit's "Internal Control Survey" form that provides a list of questions that can assist you in determining the strength of your department's internal controls.

Policy

University policy requires both indirect and direct controls. Indirect controls include management integrity, communication of ethical values, and managerial compliance with existing policies. Direct controls are quite specific. They are listed in Basic Controls and Segregation of Duties.

Basic Controls

  • There should be an audit trail for each financial transaction. Documentation can be in either electronic or paper form.
  • There should be at least one designated person in the department who is responsible for safeguarding assets including cash and cash equivalents and physical assets such as equipment, space, and supplies.
  • Accounting data must be checked to ensure that it is accurate and reliable.
  • All financial data must be checked against other documents such as receipts, billings, etc. For financial data to be validated, it must be reconciled. The external auditors recommended "documentation of the reconciliation process and timely resolution of any discrepancies found."
  • During the reconciliation process, departments must ensure that only expenses related to their fund are recorded in that fund. The department must follow up on all inaccurate charges. Reconciliation is a critical step in ensuring that the university properly manages its resources.
  • The department administrator or designee, at least monthly, must review financial records.
  • All financial transactions should be complete; all financial data, e.g., organization, fund and account, which should be present, are present.
  • According to state law, departments must encumber funds or set them aside for future spending to prevent overspending.
  • All checks must be deposited when $200 has been accumulated or weekly, whichever comes first.
  • All checks must be endorsed immediately upon receipt.
  • All cash and checks designated for university purposes must be deposited within the university. External bank accounts are not permitted unless approved by the Office of the Treasurer.
  • If you suspect fraud, contact university Internal Audit.
  • Inventories of retail operations should be reconciled periodically to purchases of products and products sold.
  • Gifts received directly by the department should be forwarded to the Development Fund for receipting and deposit.

Segregation of Duties

  • Segregation of duties is critical. Segregation deters fraud or concealment or an error because another individual's cooperation (collusion) is needed to conceal wrongdoing.
  • Two signatories are required on most financial transactions. Appropriate authorizations must be in place.
  • Receipt of funds and recording of funds should be assigned to different employees.
  • Authorization of expenditures and recording of expenditures should be segregated duties.
  • All cash received should be recorded. Another person must reconcile this record to the amounts deposited.
  • If a department is too small to have two or more employees who can segregate duties, then the department administrator (Chair, Dean, etc.) must frequently review departmental transactions, both personnel and non-personnel.

 

For questions regarding internal controls contact CTL-FDMRequests@osu.edu.