Sample Audit Committee Charter - The Institute of Internal Auditors

Sample Audit Committee Charter
The following sample charter captures many of the best practices used today and complies with the requirements of the Sarbanes-Oxley Act and the U.S. Stock Exchanges. Of course, no sample charter encompasses all activities that might be appropriate to a particular audit committee, nor will all activities identified in a sample charter be relevant to every committee. Accordingly, this charter must be tailored to each committee's needs and governing rules. The footnotes identify Sarbanes-Oxley and related stock exchange requirements that were addressed in the most recent update of this charter. These footnotes would not be included in a company's actual charter.

Audit Committee Charter¹

PURPOSE
To assist the board of directors in fulfilling its oversight responsibilities for (1) the integrity of the company's financial statements, (2) the company's compliance with legal and regulatory requirements, (3) the independent auditor's qualifications and independence, and (4) the performance of the company's internal audit function and independent auditors.² The audit committee will also prepare the report that SEC rules require be included in the company's annual proxy statement.³

AUTHORITY
The audit committee has authority to conduct or authorize investigations into any matters within its scope of responsibility. It is empowered to:

Appoint, compensate, and oversee the work of the public accounting firm employed by the organization to conduct the annual audit. This firm will report directly to the audit committee.
Resolve any disagreements between management and the auditor regarding financial reporting.
Pre-approve all auditing and permitted non-audit services performed by the company's external audit firm.
Retain independent counsel, accountants, or others to advise the committee or assist in the conduct of an investigation.⁴
Seek any information it requires from employees--all of whom are directed to cooperate with the committee's requests--or external parties.
Meet with company officers, external auditors, or outside counsel, as necessary.
The committee may delegate authority to subcommittees, including the authority to pre-approve all auditing and permitted non-audit services, providing that such decisions are presented to the full committee at its next scheduled meeting.⁵

COMPOSITION
The audit committee will consist of at least three and no more than six members of the board of directors. The board nominating committee will appoint committee members and the committee chair.⁶

Each committee member will be both independent⁷ and financially literate. At least one member shall be designated as the "financial expert," as defined by applicable legislation and regulation.⁸ No committee member shall simultaneously serve on the audit committees of more than two other public companies.⁹

MEETINGS
The committee will meet at least four times a year,¹⁰ with authority to convene additional meetings, as circumstances require. All committee members are expected to attend each meeting, in person or via tale- or video-conference. The committee will invite members of management, auditors or others to attend meetings and provide pertinent information, as necessary. It will meet separately, periodically, with management, with internal auditors and with external auditors.¹¹ It will also meet periodically in executive session. Meeting agendas will be prepared and provided in advance to members, along with appropriate briefing materials. Minutes will be prepared.

RESPONSIBILITIES
The committee will carry out the following responsibilities:

Financial Statements

Review significant accounting and reporting issues and understand their impact on the financial financial statements. These issues include:
Complex or unusual transactions and highly judgmental areas
Major issues regarding accounting principles and financial statement presentations, including any significant changes in the company's selection or application of accounting principles
The effect of regulatory and accounting initiatives, as well as off-balance sheet structures, on the financial statements of the company¹²
Review analyses prepared by management and/or the independent auditor setting forth significant financial reporting issues and judgments made in connection with the preparation of the financial statements, including analyses of the effects of alternative GAAP methods on the financial statements¹³
Review with management and the external auditors the results of the audit, including any difficulties encountered. This review will include any restrictions on the scope of the independent auditor's activities or on access to requested information, and any significant disagreements with management.¹⁴
Discuss the annual audited financial statements and quarterly financial statements with management and the external auditors, including the company's disclosures under "Management's Discussion and Analysis of Financial Condition and Results of Operations."¹⁵
Review disclosures made by CEO and CFO during the Forms 10-K and 10-Q certification process about significant deficiencies in the design or operation of internal controls or any fraud that involves management or other employees who have a significant role in the company's internal controls.¹⁶
Discuss earnings press releases (particularly use of "pro forma," or "adjusted" non-GAAP, information), as well as financial information and earnings guidance provided to analysts and rating agencies. This review may be general (i.e., the types of information to be disclosed and the type of presentations to be made). The audit committee does not need to discuss each release in advance.¹⁷

Internal Control

Consider the effectiveness of the company's internal control system, including information technology security and control.
Understand the scope of internal and external auditors' review of internal control over financial reporting, and obtain reports on significant findings and recommendations, together with management's responses.¹⁸

Internal Audit

Review with management and the chief audit executive the charter, plans, activities, staffing, and organizational structure of the internal audit function.¹⁹
Ensure there are no unjustified restrictions or limitations, and review and concur in the appointment, replacement, or dismissal of the chief audit executive.
Review the effectiveness of the internal audit function, including compliance with The Institute of Internal Auditors' Standards for the Professional Practice of Internal Auditing.
On a regular basis, meet separately with the chief audit executive to discuss any matters that the committee or internal audit believes should be discussed privately.²⁰

External Audit

Review the external auditors' proposed audit scope and approach, including coordination of audit effort with internal audit.
Review the performance of the external auditors, and exercise final approval on the appointment or discharge of the auditors. In performing this review, the committee will
- At least annually, obtain and review a report by the independent auditor describing: the firm's internal quality-control procedures; any material issues raised by the most recent internal quality-control review, or peer review, of the firm, or by any inquiry or investigation by governmental or professional authorities, within the preceding five years, respecting one or more independent audits carried out by the firm, and any steps taken to deal with any such issues; and (to assess the auditor's independence) all relationships between the independent auditor and the company²¹
- Take into account the opinions of management and internal audit.
- Review and evaluate the lead partner of the independent auditor.
- Present its conclusions with respect to the external auditor to the Board.
Ensure the rotation of the lead audit partner every five years and other audit partners every seven years, and consider whether there should be regular rotation of the audit firm itself.²²
Present its conclusions with respect to the independent auditor to the full board²³
Set clear hiring policies for employees or former employees of the independent auditors²⁴
On a regular basis, meet separately with the external auditors to discuss any matters that the committee or auditors believe should be discussed privately.²⁵

Compliance

Review the effectiveness of the system for monitoring compliance with laws and regulations and the results of management's investigation and follow-up (including disciplinary action) of any instances of noncompliance.
Establish procedures for: (i) The receipt, retention, and treatment of complaints received by the listed issuer regarding accounting, internal accounting controls, or auditing matters; and (ii) The confidential, anonymous submission by employees of the listed issuer of concerns regarding questionable accounting or auditing matters.²⁶
Review the findings of any examinations by regulatory agencies, and any auditor observations.
Review the process for communicating the code of conduct to company personnel, and for monitoring compliance therewith. ²⁷
Obtain regular updates from management and company legal counsel regarding compliance matters.

Reporting Responsibilities

Regularly report to the board of directors about committee activities and issues that arise with respect to the quality or integrity of the company's financial statements, the company's compliance with legal or regulatory requirements, the performance and independence of the company's independent auditors, and the performance of the internal audit function.²⁸
Provide an open avenue of communication between internal audit, the external auditors, and the board of directors.
Report annually to the shareholders, describing the committee's composition, responsibilities and how they were discharged, and any other information required by rule, including approval of non-audit services.
Review any other reports the company issues that relate to committee responsibilities.

Other Responsibilities

Discuss with management the company's major policies with respect to risk assessment and risk management²⁹
Perform other activities related to this charter as requested by the board of directors.
Institute and oversee special investigations as needed.
Review and assess the adequacy of the committee charter annually, requesting board approval for proposed changes, and ensure appropriate disclosure as may be required by law or regulation.
Confirm annually that all responsibilities outlined in this charter have been carried out.
Evaluate the committee's and individual members' performance at least annually.³⁰

¹NYSE Proposed Rules § 303 A (7) (b) requires the audit committee to have a written charter that addresses the points listed below.
²NYSE subsection 7(b)(i)(A)
³NYSE subsection 7(b)(i)(B)
⁴NYSE subsection 7(b)(ii)(E)
⁵Sarbanes-Oxley, section 202
⁶NYSE subsections 4 and 6
⁷SEC proposed rules for implementing Section 301 of Sarbanes-Oxley (released Jan. 8, 2003)
⁸SEC final rules for implementing Sections 406 and 407 of Sarbanes-Oxley (released Jan. 23, 2003)
⁹Commentary to NYSE subsection 6
¹⁰Amex proposed rules
¹¹NYSE subsection 7(b)(ii)(G)
¹²Commentary to NYSE subsection 7(b)(iii)
¹³Commentary to NYSE subsection 7(b)(iii)
¹⁴NYSE subsection 7(b)(ii)(H) and Commentary
¹⁵Commentary to NYSE subsection 7(b)(ii)(C)
¹⁶Sarbanes-Oxley, section 302 requires the CEO and CFO to make these disclosures to the audit committee and the external auditor
¹⁷NYSE subsection 7(b)(ii)(D)
¹⁸NYSE subsection 7(b)(iii)
¹⁹NYSE subsection 7(b)(ii)(H)
²⁰NYSE subsection 7(b)(ii)(G)
²¹NYSE subsection 7(b)(ii)(B)
²²NYSE subsection 7(b)(ii)(B)
²³NYSE subsection 7(b)(ii)(B)
²⁴NYSE subsection 7(b)(ii)(I)
²⁵NYSE subsection 7(b)(ii)(G)
²⁶SEC proposed rules for implementing Section 301 of Sarbanes-Oxley (released Jan. 8, 2003)
²⁷SEC final rules for implementing Sections 406 and 407 of Sarbanes-Oxley (released Jan. 23, 2003) requires a code of ethics for the CEO and senior financial officers. They do not require audit committee involvement.
²⁸NYSE subsection 7(b)(ii)(J)
²⁹NYSE subsection 7(b)(ii)(F)
³⁰NYSE subsection 7(b)(iii) requires annual evaluation of the committee, not of each member