Audit and Risk Committee Chairs: A Complete Guide for UK Companies

Audit and Risk Committee Chairs: A Complete Guide for UK Companies

The Audit Committee Chair and Risk Committee Chair are among the most consequential single appointments a UK board makes. The roles carry specific governance accountability for the firm’s financial reporting integrity, internal controls, external audit relationship, and (where applicable) the firm’s overall risk framework. The Code requires UK listed companies to maintain an audit committee chaired by an independent NED with recent and relevant financial experience; FCA-regulated firms have parallel expectations under SMCR with the Audit Committee Chair holding SMF10 and the Risk Committee Chair holding SMF11. Larger private and PE-backed firms increasingly appoint qualified audit and risk committee chairs voluntarily as a governance signal — both for shareholder confidence and for substantive committee effectiveness. The appointments are consequential because the committees are where material governance failures most often surface or get missed, and the chair’s effectiveness in those moments determines whether the board sees what it needs to see.

This guide is written for chairs, nomination committees, founders, shareholders and PE sponsors working through audit or risk committee chair appointments at UK firms. It covers both committee chair roles in a single guide because they share substantial overlap in qualifications, candidate pool and governance dynamics. Where the firms are FCA-regulated, the Audit Committee Chair holds SMF10 and the Risk Committee Chair holds SMF11; the regulatory dimensions of those roles are similar to those covered in our SMF5 hiring guide and SMF4 CRO hiring guide. For our committee chair recruitment services, see Audit Committee Chair recruitment and Risk Committee Chair recruitment.

The Audit Committee Chair role

The Audit Committee Chair leads the committee responsible for the integrity of the firm’s financial reporting, the effectiveness of internal controls, the external audit relationship, and (typically) the internal audit function. Five core responsibilities define the role.

Financial reporting integrity. The committee reviews the firm’s financial statements before board approval, challenging significant judgements, accounting policies and going-concern assessments. The chair leads the review and is the committee’s principal voice on whether the financial statements give a true and fair view.

External audit relationship. The committee oversees the appointment, remuneration, independence and effectiveness of the external auditor. The chair typically meets the audit partner privately, reviews the audit plan, and interrogates significant audit findings.

Internal controls. The committee reviews the design and operating effectiveness of the firm’s internal control framework — financial, operational, compliance and (increasingly) IT general controls. For larger firms, this includes oversight of the internal audit function — see our Head of Internal Audit hiring guide for the related role.

Risk management oversight. Where the firm doesn’t have a separate risk committee, the audit committee typically takes on risk management oversight. Where the firm has a separate risk committee, the audit committee retains specific accountability for financial reporting risk.

Whistleblowing and conduct matters. The committee typically receives whistleblowing reports and oversees the firm’s conduct frameworks. The chair is often the principal point of contact for whistleblowing matters that need board-level visibility.

The Risk Committee Chair role

The Risk Committee Chair leads the committee responsible for the firm’s overall risk management framework, risk appetite, and oversight of major risks. Common in larger and listed companies and standard in financial services firms, the committee operates alongside or in place of risk responsibilities the audit committee would otherwise hold.

Risk framework oversight. The committee reviews and approves the firm’s risk management framework, risk policies, and risk appetite statement. The chair leads the committee’s substantive engagement with the framework and is the committee’s principal voice on whether the framework is fit for purpose.

Risk appetite and major risk review. The committee monitors the firm’s actual risk profile against its stated risk appetite, reviews major risk exposures, and challenges the executive team on risk-and-return trade-offs. The chair leads the substantive review.

CRO relationship. The committee chair typically has a close working relationship with the Chief Risk Officer (where one exists), supporting the CRO’s independence while challenging the risk function’s effectiveness. See our How to Hire a CRO guide for related context.

Regulatory engagement. For FCA-regulated firms, the risk committee chair (holding SMF11) carries personal regulatory accountability and typically engages with the regulator on risk and prudential matters.

Qualifications and credentials

The qualifications dimension distinguishes audit and risk committee chair searches from many other senior NED searches.

For Audit Committee Chairs: The Code’s Provision 24 requires audit committee chairs to have “recent and relevant financial experience.” In practice this means strong candidates typically hold ICAEW, ACCA or CIMA chartered accountancy qualifications, with substantive prior experience as CFO, Finance Director, or audit partner. The “recent” dimension matters — qualifications held but not exercised for fifteen-plus years carry less weight than active CFO experience within the past five to ten years.

For Risk Committee Chairs: The credentials are more varied but typically include senior risk leadership experience (sitting or recently retired CRO), prior audit committee chair experience with material risk-management dimensions, ex-regulator backgrounds with risk framework expertise, or senior CFO experience with substantive risk-management track record. Risk Committee Chairs in financial services firms specifically benefit from FCA/PRA regulatory familiarity.

The candidate pool and search process

Five candidate pools recur across audit and risk committee chair searches.

Sitting committee chairs at peer firms — most common pool. Senior NEDs with relevant credentials ready to step up to committee chair — natural step-up pool. Recently retired CFOs (audit) or CROs (risk) — with substantial executive experience, often three to five years post-retirement. Big Four senior partners transitioning to portfolio NED careers — particularly relevant for audit committee chair appointments. Ex-regulators — particularly for risk committee chairs in financial services contexts.

A well-run committee chair search runs through six phases over twelve to eighteen weeks for non-regulated appointments. For FCA-regulated firms requiring SMF10 or SMF11 approval, add eight to twelve weeks for FCA approval. The phase structure mirrors NED searches with committee-chair-specific dimensions: substantive qualifications work in the brief phase, technical competence assessment built into interviews (case-style discussion of audit findings, risk events, or governance matters), and reference work that includes the candidate’s prior chair-CEO and chair-CRO/CFO working relationships.

Compensation

UK committee chair compensation is typically structured as the base NED fee plus a committee chair premium reflecting the additional responsibility and time commitment.

SME and small mid-market committee chairs typically £25,000-50,000 (NED fee) plus £5,000-15,000 (committee chair premium). Larger private and PE-backed typically £50,000-90,000 plus £10,000-25,000 premium. Listed and FTSE 250 typically £80,000-150,000 plus £15,000-40,000 premium, with FTSE 100 audit and risk chair compensation running materially higher.

Common pitfalls in committee chair searches

Six patterns recur. Underspecifying qualifications — particularly the “recent and relevant” dimension for audit committee chairs. Insufficient time-commitment articulation — committee chair roles carry substantial work between meetings. Pattern-matching to the predecessor when the firm’s situation has shifted. Insufficient assessment of CRO/CFO/Head of IA working relationship potential. Compensation anchored on standard NED fees without reflecting the chair premium. Underestimating regulatory dimensions for FCA-regulated firms.

How Exec Capital approaches committee chair mandates

Exec Capital runs audit and risk committee chair searches with the qualifications-and-credentials work built into the brief and the substantive technical-competence assessment built into the process. Adrian’s ICAEW chartered accountant background gives the engagement direct understanding of what makes audit and risk committee chairs effective in practice — not just on paper. We work on a retained basis, with engagement running through to the candidate’s first committee meeting in role.

For boards beginning audit or risk committee chair succession, considering voluntary first-time committee chair appointments at private firms, or working through the technical credentials question, we offer a structured initial conversation. Every committee chair mandate is led personally by Adrian Lawrence FCA.

Further reading

For our committee chair recruitment services, see Audit Committee Chair recruitment and Risk Committee Chair recruitment. For the related Head of Internal Audit and CRO appointments, see our Head of Internal Audit hiring guide and How to Hire a CRO guide.

For FCA-regulated firm SMF guides, see our SMF4 CRO hiring guide, SMF5 Head of Internal Audit hiring guide, and the broader FCA-regulated firm executive recruitment hub.

For related NED and board hiring guides, see our How to Hire a Chairman guide, How to Hire a Non-Executive Director guide, and Board Construction guide. For our complete senior hiring guide collection, see our Knowledge Centre.

For UK governance frameworks underpinning committee chair roles, see Provision 24 of the UK Corporate Governance Code for audit committee requirements, the FRC’s Audit Committee Minimum Standard, and guidance from the ICAEW, the Chartered Institute of Internal Auditors, and the Institute of Risk Management.