Internal Audit Office


Mr. Constantine. C. Mathonsi: Chief Internal Auditor

In Brief

The Internal Audit function was established by the University Council in accordance with Paragraph 223 of the First Schedule of the Public Entities Corporate Governance Act to provide assurance on internal controls, risk management and governance processes in line with the standards of the Professional Practice of Internal auditing.

Whom does the Internal Audit Serve?

Internal Audit is a service function that provides key stakeholders with a range of risk-based activities to assess whether the University is operating as expected. The key stakeholders include the Council, Audit Committee, the Vice-Chancellor and senior management.


The Mission of the Internal Audit Office is to enhance and protect the University's value by providing risk-based and objective assurance, advice and insight.

To accomplish our mission as an Internal Audit function, we are guided by Paragraph 227 of the First Schedule of the Public Entities Corporate Governance Act which provides that Internal Audit function should:

  1. Evaluate the governance processes;
  2. Conduct an objective assessment of the effectiveness of risk management processes and the internal control framework;
  3. Systematically analyze and evaluate business processes and associated controls;
  4. Assess the risk of fraud, corruption, unethical behaviour and other irregularities.

Internal Audit Services

The Internal Audit Office services derive from the definition of Internal Auditing as prescribed by the Institute of Internal Auditors.  The services are also directed by the Public Entities Corporate Governance Act, the Public Funds Management Act, the Standards of the Professional Practice of Internal Auditing, the Audit Committee Terms of Reference and the Council approved Internal Audit Charter. Internal Auditing is defined as an  ‘independent, objective assurance and consulting activity designed to add value and improve an organization’s operations. It helps an organizations accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.’
Assurance service

From the definition, the Assurance service provides a level of confidence to the Council and senior management that governance processes, internal controls, and risk management are working as expected to achieve the desired University strategic goals. It involves the Internal audit’s objective evaluation and assessment of evidence to provide an independent opinion or Conclusion regarding a process, system, or other subject matter.

Consulting service

On the other hand, Consulting service is advisory in nature and is generally performed at the request of management or the Audit Committee. Whilst the nature and scope of assurance service are determined by the head of Internal Audit, the nature and scope of consulting service is subject to agreement with the party requesting for the service.

How does Internal Audit provide its services?

How does
Internal Audit provide its services?

Internal Audit provides a risk-based review of the effectiveness of governance, risk management and internal control processes by:
  • Providing an independent, unbiased assessment of the University’s operations.
  • Acting as a catalyst for improvements in governance, risk management, and control processes.
  • Advising management on what it needs to know when it needs to know it.
Internal audit supports the University by:
  • Reviewing the University’s achievement of its goals.
  • Assessing if decisions are procedurally made and approved.
  • Evaluating the reliability and integrity of information.
  • Considering the efficiency, effectiveness, economy and ethics of Departments, Units and Sections' activities.
  • Assessing compliance with laws, regulations, policies, contracts and procedures
Internal Audit Charter
Mrs S Nkomo
Mrs S Nkomo
Ms S Ndlovu
Ms S Ndlovu