Skip to main content

Internal Audit Charter


Internal Audit Services is an independent, objective assurance and consulting function designed to add value and improve the operations of the South Carolina Department of Transportation (SCDOT). Internal Audit Services helps the SCDOT to achieve its objectives by bringing a systematic, disciplined approach to evaluating the effectiveness of risk management, internal control, and governance processes and by advising on best practices.


Internal Audit Services is established by SC Code Section 57-1-360 and is further clarified by the State Auditor as part of its oversight function. As provided by SC Code Section 57-1-360(B)(2), Internal Audit Services is granted full, free, and unrestricted access to any and all records, physical properties, and personnel relevant to its scope and responsibilities.

Professional Standards

Internal Audit Services adheres to the standards, professional practices, and code of ethics published by the Institute of Internal Auditors (IIA Standards).

Independence and Objectivity

To ensure independence, Internal Audit Services reports administratively and functionally to the State Auditor consistent with its enabling legislation. The State Auditor provides direct oversight, including approval for release of engagement reports. Internal Audit Services will work collaboratively with SCDOT leadership in developing an audit plan that appropriately aligns with SCDOT's mission and business objectives and reflects the business risks and other priorities identified by leadership and Internal Audit Services. To ensure objectivity, Internal Audit Services is not involved in the day-to-day operations or internal control procedures of the SCDOT and has no direct responsibility or managerial authority over the programs and activities of the SCDOT.

Scope and Responsibilities

The scope of Internal Audit Services' work includes the review of risk management, internal control, information systems, and governance processes through the provision of assurance services (defined as objective examinations of evidence for the purpose of providing an independent assessment) and consulting services (defined as advisory activities, the nature and scope of which are agreed with management). This work also involves periodic testing of transactions, best practice reviews, investigations, appraisals of legal and regulatory requirements, and measures to help prevent and detect fraud. To fulfill its responsibilities, Internal Audit Services shall:

  • Facilitate the SCDOT's implementation of an enterprise risk management (ERM) strategy.
  • Review the effectiveness of the SCDOT's risk management, internal control, and governance processes established to ensure:
    • Compliance with policies, plans, procedures, applicable laws and regulations, and business objectives.
    • The reliability and security of financial and management information and supporting systems and operations that produce this information.
    • The means of safeguarding assets including information technology hardware, software, systems, and data.
  • Review established processes and propose improvements
  • Appraise the use of resources with regard to economy, efficiency, and effectiveness.
  • Carry out consulting activities, ad hoc appraisals, investigations, or reviews requested by SCDOT leadership and approved by the State Auditor.
  • Provide independent appraisal services of program areas and activities as specified in grants, contracts, or agreements with external parties.
  • Facilitate effective communication between SCDOT and external auditors by attending entrance and exit conferences and reviewing responses to findings; maintain a log to track engagement fieldwork dates, findings, responses, and corrective action.
  • Maintain the audit staff's professional expertise through ongoing training and education.
  • Investigate reported cases of fraud, waste, abuse, mismanagement, or unethical acts and assist, as needed, in investigations performed by Authorities; report findings to the Secretary of Transportation and the Complaint Review Panel; and maintain confidential files of conclusions and actions.


Internal Audit Services is responsible for planning, conducting, reporting, and following up on audits. The results of each internal audit will be reported through a detailed audit report that summarizes the objectives and scope of the audit as well as observations and recommendations. In all cases, follow-up work will be undertaken to ensure adequate response to management's proposed risk responses and/or Internal Audit Services recommendations. Internal Audit Services reports will be delivered to the State Auditor for approval prior to distribution to the SCDOT Commission and the Legislative committee chairs identified in SC Code Section 57-1-360(B)(2).