Audit & Management Advisory Services

About Us

Audit & Management Advisory Services’ (AMAS) mission is to provide independent, objective internal auditing and consulting services that add value and improve Tufts University’s operations. AMAS brings a risk-based, disciplined approach to evaluating and improving the effectiveness of policies and procedures, internal controls, risk management, and governance processes. 

Scope of Services

AMAS conducts internal audits (assurance) and consulting engagements (advisory) with the objective of providing services to the board and management on the adequacy and effectiveness of governance, risk management, and control processes, along with guiding Tufts management to effectively manage risks that help ensure the effectiveness and efficiency of operations, the reliability of financial information, and security of sensitive and protected information. 

AMAS personnel conduct financial, compliance, operational and information technology audits. While most of our work is based on an annual risk-based audit plan as informed by the University Risk Register, AMAS is available to advise on internal control matters as an in-house consultant as well as  to provide guidance on control aspects of new systems and procedures. 

  • As defined by the Institute of Internal Auditors (IIA), internal auditors support an independent, objective assurance and consulting activity designed to add value and improve an organization’s operations.

    Their roles include monitoring, assessing, and analyzing organizational risk and controls; and reviewing and confirming information and compliance with policies, procedures, and laws. Working in partnership with management, internal auditors provide the board, the audit committee, and executive management assurance that risks are held at bay and that the organization’s corporate governance is strong and effective. When there are opportunities for improvement anywhere within the organization, internal auditors make recommendations for enhancing processes, policies, and procedures.”

  • AMAS exists by charter and Trustee by-law to assist university management and the Audit, Risk and Compliance Committee of the Board of Trustees in effectively fulfilling their responsibilities. We are charged with reviewing the reliability and integrity of information; observance with policies, plans, laws, and regulations; the safeguarding of assets; and the economical and efficient use of resources.

  • External auditors are independent of the university organization. The university enters into a contract with a public account firm to provide annual opinions on the accuracy of the university’s financial statements as presented. External auditors may also be government auditors that focus on university compliance with government regulations and the terms of grant and contract awards.

    Internal auditors are an integral part of the university organization and provide ongoing monitoring and assessment of university operations. This includes evaluation of the adequacy of internal controls, the university’s level of compliance with government regulations, and the level of compliance with university policies and procedures by the various components of the university community.

  • Internal auditors are primarily concerned with the observance of an organization’s policies and procedures, risk assessment and the proper design of internal control as well as opportunities to help management mitigate operating, financial and compliance risks that could affect their areas of responsibility. We also look for gaps in policies and procedures that could raise fraud risk and make recommendations to improve controls that will help prevent or detect fraudulent activities.

Charter

Our charter, which is reviewed and approved by the Trustee’s Audit, Risk, & Compliance Committee, establishes the framework for performing our full scope of services. The following outlines key elements from the charter: (The full charter is available upon request.) 

Role

AMAS serves as an independent and objective internal resource to assess the university’s activities as an assurance service to the Board of Trustees and senior management.

Independence

To maintain independence and objectivity, AMAS has no direct operating responsibility for or authority over management processes, activities or operations that are reviewed.

Reporting Relationship and Authority

AMAS reports to the Audit, Risk & Compliance Committee of the Board of Trustees and to the Executive Vice President. 

AMAS has full and unrestricted access to all university activities, documents, records, systems, facilities and personnel as necessary to fulfill its objectives. Information obtained is maintained with appropriate confidentiality.

Professional Standards and Ethics

AMAS follows the Institute of Internal Auditors’ Global Internal Audit Standards (2025), which provide the foundation for evaluating and enhancing the quality of the internal audit function. The principles of Integrity, Objectivity, Confidentiality, and Competency guide the behavior and decision-making of all AMAS personnel and are essential to maintaining trust, independence, and professionalism.

Coordination of Services with Tufts’ External Audit Firm

AMAS and Tufts’ external audit firm provide complementary services to the institution. Coordination of activities ensures comprehensive coverage of the university’s audit universe. AMAS and the external audit firm work together to assess institutional risks and coordinate audit activities.