• About us
  • Raising the Bar
  • Raising your Game
  • The Extra G - Geopolitical
  • Risk Matters - Roundtables
  • Leadership Team
  • Events
  • Blog
  • Contact
  • Menu

The Risk Coalition

  • About us
  • Raising the Bar
  • Raising your Game
  • The Extra G - Geopolitical
  • Risk Matters - Roundtables
  • Leadership Team
  • Events
  • Blog
  • Contact

25 lessons from working with Audit Committees for 25 years

June 16, 2022

I came across a note in storage recently that made me realise that it is 25 years since I first - very nervously - appeared before an Audit Committee. In the time since (and hasn’t that gone fast!), my estimation is that I have attended about 150 Audit Committee meetings.

So what have I learnt? Here are 25 things…

1 - You never stop learning when dealing with Audit Committees. The day you do, retire.

2 - Working closely and collaboratively with a good Audit Committee Chair is worth more than a payrise (and both are good too!).

3 - If you are not slightly nervous before an Audit Committee then you are doing something wrong.

4 - If the Audit Committee is a ‘gotcha forum’ then that tells you an enormous amount about the culture of the organisation.

5 - Never rely on electronic workpapers alone. They can freeze right when you need them and having your information in folders gives you precious additional moments to think when you are turning the pages.

6 - A Committee secretariat that takes detailed notes is your best friend.

7 - Never lie to an Audit Committee. I never have (and never will) but I have seen others do so and it is more obvious than the nose on their faces.

8 - There is no perfect Audit Committee paper. You can - and should - always get better.

9 - If you have to wait until a private in camera session to tell the Audit Committee something supposedly urgent it is probably not worth sharing.

10 - Understand the lay out of the Board room before you go in. I always try and go in a couple of hours early to see how it is set up.

11 - Start planning for the next Audit Committee before this one has even started.

12 - Have a game suit that you are comfortable in so you are not sitting there worrying about how you look.

13 - If they offer jam scones and you are wearing a white shirt opt for the water!

14 - Take two pens into the room. One will run out for sure.

15 - Every Audit Committee Chair has a particular look when they want you to do something but they don’t want to say it in front of everyone.

16 - An Audit Committee without a good Charter is a ship without a rudder.

17 - Keep track of what you have committed to an Audit Committee. They will remember so be ahead of that question.

18 - If the Audit Committee treats you as an ‘enemy’ dial your nearest recruiter because time is up.

19 - An Audit Committee should not expect you to know everything.

20 - Other than the Chair have someone that can give you feedback on your performance (mine is the external auditor).

21 - Trust your gut.

22 - A morning Audit Committee is always better than one after lunch.

23 - Be (very) alert to the manager that treats the Audit Committee differently to how they treat those that work for them.

24 - There is no such thing as a well-functioning organisation with a poorly functioning Audit Committee.

And

25 - Well ... that is still to be written ...

Tom McLeod is a Global Chief Risk and Chief Audit Officer with over 30 years’ experience. He is a columnist and also chairs a major charity.

Tags: Tom McLeod
Prev / Next

Blog

Featured
Apr 15, 2025
Vera Cherepanova
The future of ESG: navigating a fragmented landscape
Apr 15, 2025
Vera Cherepanova
Apr 15, 2025
Vera Cherepanova
Mar 6, 2025
Mo Warsame, Gavin Hayes
Internal audit and risk management must work together to navigate uncertainty
Mar 6, 2025
Mo Warsame, Gavin Hayes
Mar 6, 2025
Mo Warsame, Gavin Hayes
Sep 4, 2024
Polly Williams, Mia Harris
Three key threats of phishing to be aware of
Sep 4, 2024
Polly Williams, Mia Harris
Sep 4, 2024
Polly Williams, Mia Harris
Aug 25, 2024
Felix Ritchie
Principles versus rules in data and corporate governance
Aug 25, 2024
Felix Ritchie
Aug 25, 2024
Felix Ritchie
Jul 16, 2024
Jane Hunter, Mia Harris
How can you maintain high standards in your business without suffering burnout?
Jul 16, 2024
Jane Hunter, Mia Harris
Jul 16, 2024
Jane Hunter, Mia Harris
Jun 2, 2024
Afshan Moeed
Enforcement of individual accountability in UK banking: a new boardroom recipe for change or continuity?
Jun 2, 2024
Afshan Moeed
Jun 2, 2024
Afshan Moeed
May 28, 2024
Craig Morris, Mia Harris
Three exciting new developments for AI in 2024 that you need to know about
May 28, 2024
Craig Morris, Mia Harris
May 28, 2024
Craig Morris, Mia Harris
May 24, 2024
Stefan Hunziker
The stuff of nightmares: risk management is shut down, and nobody notices
May 24, 2024
Stefan Hunziker
May 24, 2024
Stefan Hunziker
Mar 20, 2024
Neil Tinegate
What should boards know about digital technology?
Mar 20, 2024
Neil Tinegate
Mar 20, 2024
Neil Tinegate
Mar 15, 2024
Francis Kean
The insolvency risk for company directors - are you swimming naked?
Mar 15, 2024
Francis Kean
Mar 15, 2024
Francis Kean
Feb 29, 2024
Andy Watkins-Child
Are you sitting comfortably?  Cyber risk, board attestations and the implications for NEDs
Feb 29, 2024
Andy Watkins-Child
Feb 29, 2024
Andy Watkins-Child
Oct 24, 2023
Mamun Madaser
Risk management and internal audit should collaborate to navigate the poly-crisis of risk
Oct 24, 2023
Mamun Madaser
Oct 24, 2023
Mamun Madaser
Oct 18, 2023
Jim Watson
How to mitigate the risk of cyber security breaches – part 2
Oct 18, 2023
Jim Watson
Oct 18, 2023
Jim Watson
Oct 13, 2023
Nisha Sanghani
Risk management and internal controls: much (needed) work to do as a result of the proposed changes to the UK Corporate Governance Code
Oct 13, 2023
Nisha Sanghani
Oct 13, 2023
Nisha Sanghani
Oct 9, 2023
Jim Watson
How to mitigate the risk of cyber security breaches – part 1
Oct 9, 2023
Jim Watson
Oct 9, 2023
Jim Watson