Administrations

Internal Auditing Office

Independent audit, assurance, and advisory services that strengthen governance, controls, and risk management across UKF.

Focus

Internal audit

Scope

Risk & controls

Support

Compliance

What we do

Audit, compliance, and controls

Independent assurance that UKF processes remain compliant, efficient, and aligned to policy.

The Internal Audit Office is a key pillar of governance at the University of Khorfakkan. The Office operates independently to provide audit, assurance, and advisory services that contribute to enhancing the efficiency and effectiveness of academic, administrative, and financial operations. It supports the University’s leadership by evaluating internal control systems, promoting compliance with applicable regulations and policies, and contributing to the achievement of the University’s strategic objectives in accordance with international professional standards and best practices.

Financial and Administrative Auditing

Evaluating the adequacy and effectiveness of financial and administrative control systems, and verifying compliance with approved University policies, procedures, and regulations.
Reviewing financial records, reports, and transactions to ensure their accuracy, completeness, efficiency, and compliance with relevant regulations, policies, and applicable requirements.

Procurement and Contracts Auditing

Assessing the compliance of procurement and contracting processes with approved regulations, policies, and authorizations, and ensuring transparency, integrity, and fairness in procedures.
Reviewing tendering processes, bid receipt and evaluation, award decisions, and the issuance of purchase orders, as well as monitoring contract management, execution, and amendments, to ensure efficiency and safeguard the University’s interests.

Academic Operations Auditing

Reviewing admission and registration processes, academic scheduling, examination and assessment procedures, and the administration of scholarships and tuition discounts, to ensure the proper, consistent, and equitable application of approved regulations, policies, and controls.
Assessing the level of compliance of colleges and academic units with approved academic regulations and systems, including academic program requirements, assessment standards, and progression and graduation criteria.

Information Systems and Technology Auditing

Evaluating the cybersecurity environment and information security controls, including access management and system authorization mechanisms, to ensure their adequacy in relation to identified risks.
Reviewing backup procedures, business continuity plans, and disaster recovery plans to ensure their effectiveness in protecting the University’s data and systems and maintaining continuity of services.

Enterprise Risk Assessment

Reviewing the institutional risk management framework and risk registers prepared by relevant units and assessing their comprehensiveness and alignment with the University’s strategic objectives.
Evaluating the adequacy and effectiveness of controls related to key institutional risks and providing recommendations to address control weaknesses and reduce risk levels to acceptable thresholds.
Coordinating with concerned entities to support the promotion of a culture of risk management, compliance, and accountability across the University.

Advisory Services

Providing independent and objective advisory services to University units and departments aimed at improving operational efficiency and effectiveness and strengthening internal controls. This includes offering professional opinions on policies, procedures, and regulatory drafts from an oversight perspective, without assuming executive responsibilities or participating in management decision-making.

Reporting and Follow-up

Preparing and submitting comprehensive periodic reports to the Compliance and Internal Audit Committee and University management on audit activities, findings, and levels of compliance with applicable legislation, policies, and internal controls.
Monitoring the implementation of audit recommendations and agreed-upon action plans in coordination with relevant departments, and issuing follow-up reports highlighting progress achieved, as well as any delays or implementation challenges.

People