Skip to Search Skip to Global Navigation Skip to Local Navigation Skip to Content

Quality Assurance Reviews

A Quality Assurance Review (QAR) evaluates the procedures a department has in place to mitigate the risk of fraud.

In addition, QAR's verify the accuracy of the account administrator's responses to the Management Certifications and is in accordance with UT System financial accountability mandates. Management Certifications are used to assess a department’s system of internal controls in relation to the criteria in UTSA’s Management Responsibilities Guide. Each account administrator will provide an opinion as to whether their department’s system of internal control is adequately designed, properly executed, effective, there are no misstatements or omissions in the financial information provided, and all frauds known to them have been reported and appropriately addressed.

 

QAR - Frequently Asked Questions

Why and how were we chosen to be reviewed?

How are we notified if we have been selected for a QAR?

How does our department prepare for a QAR?

How long will the review last?

What kind of report will I receive?


How is this different from an audit?

 

 

 

 

 

 

 

 

Why and how were we chosen to be reviewed?
Account administrators from each Vice President's area are selected based on a risk assessment that considers several variables, e.g., funding levels, complexity of transactions, Management Certification responses, etc. Given the large scope of this initiative and our available resources, a limited number of account administrators are selected for each Vice President's area each fiscal year. Each Vice President approves the selection of account administrators. All account administrators will eventually be selected for a QAR.
Top

 

How are we notified if we have been selected for a QAR?
You will receive an email and/or a call from the Compliance Assurance Specialist in the Office of Institutional Compliance and Risk Services stating that you have been selected for a QAR and a request to schedule a time for the QAR to be performed.
Top

 

How does our department prepare for a QAR?
The reviews are based on the Management Certifications. Account administrators should review the policies and suggestions found in the Management Assessment Tool. In addition, approximately one week prior to the QAR you will be provided with a checklist of the items that will be reviewed. To access the checklist, please click here.
Top

 

How long will the review last?
We do our best to ensure minimal disruption of the day to day activities of the department. The interview with the account administrator will take approximately one hour.
Top

 

What kind of report will I receive?
Each account administrator (and their immediate supervisor) will receive a report that assigns a code to the various areas reviewed. The code is as follows:

  • Red dot - significant departure from university policy, procedures and/or best practices;
  • Yellow dot - moderate departure from university policy, procedures and/or best practices;
  • Green dot - compliant with or non-significant departure from university policy, procedures and/or best practices.

The report is then quantified into an overall ranking of the risk of fraud in that department (i.e. significant risk, moderate risk or low risk). Click here for a sample report.
Top

 

How is this different from an audit?
This is not an audit, nor does is substitute for an audit. The purpose of this review is to provide, in a consultative manner, an objective evaluation of internal controls in the area and to alert the account administrator to potential risks.  A QAR is a “proactive” approach to monitoring internal controls so that account administrators are aware of risks and can ensure they are adequately mitigated before weaknesses are identified in an audit.
Top