Duke Alert Bar

thematic graphic

Office of Audit, Risk and Compliance

Leigh Goller
Leigh P. Goller 
Chief Audit, Risk and Compliance Officer

The Duke Office of Audit, Risk and Compliance (OARC) provides value added services across the entire institution, including Duke University, Duke University Health System, and DUMAC.  

The mission of OARC is to enhance and protect organizational value by providing risk-based and objective assurance, advice and insight in the following service areas:

  • Audit
  • Enterprise Risk Management
  • Compliance

As a service provider within Duke, we consider first the needs of our stakeholders.  With this approach, we foster open and collaborative relationships, risk-focused engagement and opportunities to identify improvements to crucial governance, financial and operational processes and procedures.  We have ensured that communication with our stakeholders and staff development support our mission to advance and integrate risk awareness, internal controls and compliance requirements as well as to collaborate on proactive and innovative improvements to business processes through high-quality assurance and advisory services.

OARC Charter

The OARC performs independent internal audits, plans and oversees the university risk management process, and oversees the institutional ethics and compliance program.  It is designed to help fulfill the fiduciary responsibilities of the Duke University Audit, Risk and Compliance Committee, the Duke University Health System Compliance/Audit Committee and the DUMAC Audit, Compliance and Risk Management Committee (collectively referred to as the “audit committees” below). (Full Charter)

Governance Structure and Independence

To provide for the independence of OARC, the chief audit, risk and compliance officer reports administratively to the president of the university and the chancellor of DUHS and functionally to the boards and audit committees.