C.R.S. Section 2-3-103
Duties of state auditor

  • definition

(1)

Intentionally left blank —Ed.

(a)

It is the duty of the state auditor to conduct or cause to be conducted postaudits of all financial transactions and accounts kept by or for all departments, institutions, and agencies of the state government, including educational institutions, and the judicial and legislative branches, to conduct performance postaudits thereof, and to perform similar or related duties with respect to such political subdivisions of the state as may be required by law. Postaudits of all financial transactions and accounts may be conducted on a biennial basis.

(b)

The state auditor shall have the authority to conduct or cause to be conducted postaudits of all financial transactions and accounts kept by or for any special purpose authority as defined in section 24-77-102 (15), C.R.S., or any state entity designated as an enterprise as defined in section 20 (2)(d) of article X of the state constitution, including performance postaudits thereof, except for:

(I)

Any special purpose authority or state entity whose governing body includes the state auditor as an ex officio member;

(II)

Any hospital that is subject to audit under the “Colorado Medical Assistance Act”, articles 4 to 6 of title 25.5, C.R.S., or medicare, Title XVIII of the federal “Social Security Act”, as amended; or

(III)

Any special purpose authority or state entity where the authority’s or entity’s actions are subject to a performance audit, or such similar audit, by the federal government. Upon completion of such a federal performance audit, a copy of the audit shall be shared with the state auditor.

(1.5)

Intentionally left blank —Ed.

(a)

In addition to any other duties granted by law, the state auditor may assess, confirm, and report on the security practices of all of the information technology systems maintained or administered by all departments, institutions, and agencies of state government, including educational institutions and the judicial and legislative branches. The state auditor may perform similar or related duties with respect to political subdivisions of the state where the state auditor has been granted authority to perform financial or performance audits with respect to such political subdivisions. In order to perform such duties, the state auditor may conduct penetration or similar testing of computer networks or information systems of the state or a political subdivision, as applicable, assess network or information system vulnerability, or conduct similar or related procedures to promote best practices with respect to the confidentiality, integrity, and availability of information systems technology as the state auditor deems necessary in his or her discretion. In conducting such testing, the state auditor may contract with auditors or information technology security specialists, or both, who possess the necessary specialized knowledge and experience to perform the required work. The authority of the state auditor pursuant to the requirements of this subsection (1.5) are coextensive with the state auditor’s authority under this part 1.

(b)

Any testing or assessment of security practices and procedures concerning information technology in accordance with paragraph (a) of this subsection (1.5) shall be conducted or caused to be conducted by the state auditor:

(I)

After consultation and in coordination with, but not requiring the approval of, the chief information officer appointed pursuant to section 24-37.5-103, C.R.S., or any person performing comparable duties for either a state agency that is not under the jurisdiction of the office of information technology created in section 24-37.5-103, C.R.S., or a political subdivision of the state;

(II)

In accordance with industry standards prescribed by the national institute of standards and technology or any successor agency; and

(III)

After the state auditor and any other person with whom the state auditor is required to consult in accordance with the requirements of subparagraph (I) of this paragraph (b) have agreed in writing to rules governing the manner in which the testing or assessment is to be conducted, including a mitigation plan for handling significant system outages or disruptions in the event they occur.

(2)

The state auditor shall prepare for the committee reports and recommendations on the postaudits conducted, and, under the direction of the committee, shall prepare an annual report to contain, among other things, copies of or the substance of audit reports on the various departments, institutions, and agencies as well as a summary of recommendations made in regard thereto. All reports must be open to public inspection except for that portion of any report containing recommendations, comments, and any narrative statements which is released only upon the approval of a majority vote of the committee.

(3)

The state auditor shall keep a complete and accurate set of records on the fiscal transactions of the state auditor’s office, and shall also keep a complete file of copies of all audit reports, including work papers, and copies of examinations, investigations, and any other reports or materials issued by the state auditor, the state auditor’s staff, or by the committee. The work papers of the office of the state auditor shall be open to public inspection only upon approval of a majority of the members of the committee. Only the specific work papers that the committee votes to approve for disclosure shall be open to public inspection. Work papers that have not been specifically approved for disclosure by a majority vote of the committee shall remain confidential. Under no circumstances shall the work papers be open to public inspection prior to the completed report being filed with the committee.

(4)

All expenses incurred by the office of the state auditor, including salaries and expenses of employees, shall be paid upon vouchers signed by the chairman of the committee and drawn on funds appropriated for legislative expenses and allocated to the office of the state auditor; except that any payroll voucher or any other voucher which does not exceed one thousand dollars may be signed by the state auditor or by the state auditor’s authorized designee.

(5)

It is the duty of the state auditor to annually evaluate the investments of the public school fund and report to the committee any loss of principal of such fund that, in the state auditor’s judgment, exists.

(6)

Repealed.

(7)

Upon a determination by the state auditor that the provisions of section 20-1-112, C.R.S., have not been met, the state auditor shall cause to be conducted a postaudit of any noncomplying office of district attorney. The expenses of such a postaudit shall be borne by the office of district attorney.

(8)

The state auditor shall review or cause to be reviewed all enterprise designations submitted to the office of the state auditor pursuant to the provisions of sections 23-3.1-103.5 and 23-5-101.5, C.R.S., to ensure that such designations conform to the requirements of section 23-3.1-103.5 or 23-5-101.5, C.R.S., whichever is applicable, and to the provisions of section 20 of article X of the state constitution. In addition, the state auditor shall recommend to the legislative audit committee those designations, if any, which, in the opinion of the state auditor, should be allowed to expire and shall otherwise assist the legislative audit committee in reviewing the enterprise designations submitted to the office of the state auditor.

(9)

It is the duty of the state auditor to conduct or cause to be conducted performance audits as specified in section 2-7-204 (5).

(9.5)

It is the duty of the state auditor to notify the appropriate joint committee of reference as determined pursuant to section 2-7-203 when a department has not completed recommendations made by the state auditor within the time provided.

(9.7)

It is the duty of the state auditor to establish and administer the fraud hotline as specified in section 2-3-110.5.

(10)

As used in this section, unless the context otherwise requires:

(a)

“Information technology” shall have the same meaning as specified in section 24-37.5-102 (12).

Source: Section 2-3-103 — Duties of state auditor - definition, https://leg.­colorado.­gov/sites/default/files/images/olls/crs2023-title-02.­pdf (accessed Oct. 20, 2023).

2‑3‑101
Legislative audit committee - membership - meetings - powers and duties 2‑3‑102
State auditor - qualifications and appointment - term of office 2‑3‑103
Duties of state auditor - definition 2‑3‑103.5
Deputies 2‑3‑103.7
Disclosure of reports before filing 2‑3‑104
Salary and staff of state auditor 2‑3‑104.5
Legal representation of the state auditor 2‑3‑107
Authority to subpoena witnesses - access to records 2‑3‑108
Special audits 2‑3‑109
Emergency reports 2‑3‑110
Reimbursement of state auditor for certain audits - disclosure 2‑3‑110.5
Fraud hotline - investigations - confidentiality - access to records - definitions 2‑3‑113
Programs that receive tobacco settlement money - program review - definitions 2‑3‑114
State records management - duties of state auditor - definitions 2‑3‑115
Use of state education fund money for school capital construction - audits - reports 2‑3‑119
Audit of healthcare affordability and sustainability fee - cost shift 2‑3‑120
Periodic performance audits of Colorado new energy improvement district and new energy improvement program - reports 2‑3‑121
Performance audits of public highway authorities 2‑3‑124
Audits of reports of recidivism and educational outcomes by the division of youth services 2‑3‑125
Periodic performance audits of Colorado civil rights division and commission - reports 2‑3‑126
Performance audits of Colorado electric transmission authority 2‑3‑128
Oil and gas - performance audit - report - definitions - repeal 2‑3‑201
Joint budget committee established 2‑3‑202
Organization and meetings 2‑3‑203
Powers and duties of the joint budget committee 2‑3‑204
Staff director, assistants, and consultants 2‑3‑205
Expenses - vouchers 2‑3‑206
Recommendations and findings 2‑3‑208
Budget requests - amendments - supplemental appropriation requests - deadlines - definitions 2‑3‑209
Long-range financial plan - definitions 2‑3‑210
Evidence-based decision-making - budget requests - legislative declaration - definitions 2‑3‑301
Legislative council created - executive committee created 2‑3‑302
Organization - meetings 2‑3‑303
Functions - report - definitions 2‑3‑303.3
Interim committees - repeal 2‑3‑304
Director of research - assistants 2‑3‑304.5
Tax policy changes - dynamic model - pilot program - advisory committee 2‑3‑305
Requests of the governor 2‑3‑306
Authority to subpoena witnesses 2‑3‑307
Minutes of council 2‑3‑308
Recommendations and findings 2‑3‑309
Reimbursement of members for expenses 2‑3‑310
Centralized legislative accounting service 2‑3‑311
Interstate cooperation 2‑3‑501
Legal services in legislative department 2‑3‑502
Committee on legal services - membership - duties 2‑3‑503
Director - staff - revisor 2‑3‑504
Duties of office 2‑3‑505
Requests for drafting bills and amendments - confidential nature thereof - lobbying for bills 2‑3‑506
Use of supreme court library 2‑3‑507
Office space in or near capitol - office hours - appropriations 2‑3‑508
Terminology - references 2‑3‑511
Office of legislative workplace relations - creation - duties - records - definitions 2‑3‑601
Commission on uniform state laws - creation 2‑3‑602
Compensation - expenses 2‑3‑603
Meetings - organization 2‑3‑603.5
Status of commissioners 2‑3‑604
Duties of commissioners 2‑3‑701
Function of committee - statute revision 2‑3‑702
Revisor of statutes - duties 2‑3‑703
Revision - editorial work 2‑3‑705
Distribution of statutes 2‑3‑901
Statutory revision committee - creation 2‑3‑902
Duties of committee 2‑3‑1001
Legal counsel retained 2‑3‑1002
Legislative expenses cash fund - creation 2‑3‑1201
Sunrise and sunset review - designation of committees of reference to conduct review 2‑3‑1202
Staff assistance 2‑3‑1203
Sunset review of advisory committees - legislative declaration - definition - repeal 2‑3‑1301
Definitions 2‑3‑1302
Capital development committee established 2‑3‑1303
Rules of procedure 2‑3‑1304
Powers and duties of capital development committee - definition 2‑3‑1304.6
Capital construction and long-range planning by state agencies and state institutions of higher education - policy 2‑3‑1305
Recommendations and findings 2‑3‑1306
Staff assistance 2‑3‑1307
Highway and bridge projects - exempt 2‑3‑1401
Oversight of economic development activities of state - business affairs and labor committee and business, labor, and technology committee - reports from governor to joint budget committee on economic development programs 2‑3‑1501
Legislative declaration 2‑3‑1502
Definitions 2‑3‑1503
Legislative emergency preparedness, response, and recovery committee - creation - membership - duties 2‑3‑1601
Legislative declaration 2‑3‑1602
Wildfire matters review committee - creation - repeal - repeal of part 2‑3‑1701
Definitions 2‑3‑1702
Joint technology committee established 2‑3‑1703
Organization, procedures, and meetings 2‑3‑1704
Powers and duties of the joint technology committee 2‑3‑1705
Staff assistance 2‑3‑1707
Task force for the consideration of facial recognition services - creation - membership - duties - compensation - staff support - repeal 2‑3‑1801
Legislative committees to receive information from the executive branch during a declared disaster emergency - definition 2‑3‑1901
Legislative oversight committee for Colorado jail standards - creation - duties 2‑3‑1902
Colorado jail standards commission - creation - membership 2‑3‑1903
Commission - duties - report 2‑3‑1904
Repeal of part
Green check means up to date. Up to date

Current through Fall 2024

§ 2-3-103’s source at colorado​.gov