Audit Committee Responsibilities

The audit committee is a board subcommittee responsible for overseeing a company’s audit process, internal controls, financial reporting quality, and compliance with laws and regulations. Audit committee members are independent directors with financial expertise who provide a buffer between management and auditors, ensuring auditors remain objective and financial statements are reliable.

Responsibility	Scope
Auditor selection	Hire, supervise, and terminate external auditor
Audit scope review	Approve audit plan, scope, and budget
Internal controls	Oversee design, testing, and reporting of controls
Financial reporting	Review and approve quarterly/annual financial statements
Compliance	Ensure adherence to laws, regulations, and policies
Management integrity	Assess tone at the top; receive management certifications
Whistleblower system	Maintain mechanisms for reporting ethics violations
Independence	Evaluate auditor independence and prevent conflicts

The audit committee’s role in corporate governance

Audit committees emerged as a governance mechanism to protect shareholders from financial statement fraud and mismanagement. The committee sits between management (who prepare statements) and the board of directors (who oversee the firm). This positioning is intentional: audit committee members serve as independent monitors, empowered to challenge both management and auditors.

Modern audit committees are staffed entirely by independent directors. Sarbanes-Oxley and subsequent regulations (Dodd-Frank) mandate independence and require at least one member with accounting or financial expertise (an “audit committee financial expert”). This creates a deliberate knowledge asymmetry — audit committees should possess more financial sophistication than the wider board.

Hiring and managing the external auditor

One of the audit committee’s most critical powers is selecting the external auditor. The committee issues an RFP (request for proposal), evaluates bids from audit firms, and presents a recommendation to shareholders for approval. This process is designed to break the traditional management-auditor relationship: previously, CFOs hired and fired auditors, creating an incentive for auditors to overlook management wrongdoing.

By transferring auditor selection to the audit committee, the theory goes, auditors’ incentives shift. They report to the audit committee, not management. The committee can fire an auditor that acquiesces too readily to aggressive accounting, and auditor fear of termination should promote skepticism.

In practice, audit relationships are sticky. Auditors develop deep knowledge of a client’s business over many years; switching auditors is costly. Audit committees do occasionally dismiss underperforming auditors, but wholesale replacement is rare.

Evaluating and managing audit scope

Before an audit begins, the audit committee reviews the auditor’s proposed scope and budget. The committee must approve the audit plan, including the areas of focus, risk assessments, and staffing levels. During the audit, the auditor reports issues to the audit committee — significant control deficiencies, material weakness findings, and management disputes.

At the audit’s conclusion, the auditor presents the final report and audit opinion to the audit committee before releasing it to the board. The committee interrogates the auditor: How did you assess the key audit matters? Were there disputes with management over accounting treatments? Were there scope limitations? These conversations are meant to verify that the audit was thorough and that the auditor was not pressured into a clean opinion.

Overseeing internal controls and compliance

A related responsibility is overseeing the firm’s internal control assessment. Under Sarbanes-Oxley section 404, public companies must document and test their internal controls over financial reporting. Management is responsible for the assessment, but the audit committee receives the results and evaluates whether controls are adequate.

The audit committee also monitors compliance with laws and regulations. It receives reports on litigation, tax matters, regulatory inquiries, and ethics complaints. If a compliance failure occurs (say, a trading violation or tax non-filing), the audit committee is expected to investigate, determine root cause, and ensure remediation.

Financial reporting review and approval

The audit committee reviews and discusses draft financial statements before the board approves them. This includes balance sheet items, income statement performance, cash flow statement detail, and footnote disclosures. The committee examines whether accounting treatments are consistent with past practice and generally accepted principles (GAAP).

Areas of particular scrutiny include revenue recognition (a historically fraught area), goodwill impairment, deferred tax assets, and large accruals. The committee asks: Does this balance sheet reflect economic reality, or is management papering over problems?

Assessing management integrity and tone at the top

An often-overlooked audit committee function is evaluating tone at the top — whether leadership is committed to ethical conduct and accurate reporting. Audit committees receive certifications from the CEO and CFO that financial statements are fairly presented and that they are not aware of fraud or significant control deficiencies. The committee also evaluates the CEO’s temperament: Is the CEO dismissive of auditor concerns? Does the CEO promote a culture of cutting corners?

A company with weak tone at the top — where executives pressure accountants to deliver favorable numbers — is at high risk for fraud. Audit committees are expected to recognize these warning signs and escalate to the full board.

Whistleblower systems and ethics hotlines

Audit committees maintain or oversee ethics hotlines and other mechanisms for employees to report suspected fraud, mismanagement, or policy violations. Whistleblowers provide early warning of internal problems. The audit committee receives regular reports on ethics complaints, investigates substantive allegations, and ensures that whistleblowers are protected from retaliation.

Under Dodd-Frank, public companies must also establish procedures for receiving and addressing complaints about accounting and auditing matters. The audit committee is responsible for these systems.

Evaluating auditor independence

Audit committees must assess whether the external auditor remains independent. This includes monitoring non-audit services that the auditor provides to the client. If an audit firm also advises a client on IT consulting or tax matters, there is a risk that the tail (lucrative consulting) wags the dog (the less lucrative audit), creating a conflict of interest.

Sarbanes-Oxley prohibits auditors from providing certain services (internal audit, bookkeeping, valuation) simultaneously with auditing. For other services, audit committees must pre-approve them and monitor whether they compromise independence. The committee also evaluates whether the auditor has any financial relationships with the company that could undermine objectivity.

Audit Opinion — the independent auditor’s conclusion on financial statement fairness
Internal Control Assessment — documentation and testing of control design
Material Weakness — significant control deficiencies reported to audit committees

Wider context

Sarbanes-Oxley Act — regulation that created modern audit committee requirements
Board of Directors — oversight structure at the top
Corporate Governance — broader framework for management oversight