5-13-313. Audit selection based on risk. (1) In selecting and prioritizing the agencies or programs for audit under 5-13-304, the legislative auditor shall consider the agency's or program's financial, operational, and technological risks associated with meeting its intended purpose, goals, objectives, and legal mandates.

(2) To aid in identifying agencies and programs for audit, the committee shall, before July 1 of each odd-numbered year, request that the governor, the board of regents, and the judiciary furnish the committee with a list of any recommendations for agencies and programs within the governor's, board of regents', or judiciary's respective jurisdiction to be considered for audit during the next biennium pursuant to this chapter. The list may be prioritized and must set forth the reasons for recommending each agency or program to be considered based on the risk criteria in subsection (1).

(3) The legislative auditor shall review the lists, suggestions from legislators and legislative committees, staff recommendations, and any other relevant information and consult with the committee as necessary.