Risk assessment is a systematic process for assessing and integrating professional judgments about probable adverse conditions and/or events. The risk assessment process should provide a means of organizing and integrating professional judgments for development of the audit work schedule. This document details internal audit's budgeting and planning processes for a 12 month period (i.e. Fiscal Year July 1 - June 30) which is defined by combining the results of the risk assessment and the resources required to yield the timing and frequency of planned internal audits. The plan describes audit goals, schedules, staffing needs, and reporting.

• FY18 - Citywide IT_Risk_Assessment_and_Audit_Work_Plan
• FY18 - Citywide Risk Assessment and Audit Work Plan 
• FY17 - Citywide IT Risk Assessment and Audit Work Plan
• FY17 - Citywide Risk Assessment and Audit Work Plan
• FY16 - Citywide IT Risk Assessment and Audit Work Plan
• FY16 - Citywide Risk Assessment and Audit Work Plan
• FY15 - Citywide Risk Assessment and Audit Work Plan
• FY14 - Revised Audit Work Plan
• FY14 - Citywide Risk Assessment and Audit Work Plan
• FY13 - Revised Audit Work Plan
• FY13 - Citywide Risk Assessment and Audit Work Plan
• FY12 - Citywide Risk Assessment and Audit Work Plan
• FY11 - Audit Work Plan
• FY10 - Citywide Risk Assessment and Audit Work Plan
• FY09 - Revised Audit Work Plan
• FY09 - Audit Work Plan
• FY08 - Citywide Risk Assessment and Audit Work Plan