The main objectives of the audit were to assess the management and administration of protective security across Commonwealth agencies and to identify, recommend and report better practice in security management. Particular attention was paid to:

• compliance with Government policy, standards and guidelines;
• the role of management in protective security; and
• the operation of security systems and practices.

The audit criteria and procedures to assess the management and administration of the individual organisations examined were largely based on the overall control framework of an organisation and the guidance provided in the current Commonwealth Protective Security Manual.

The objective of the audit was to assess the efficiency and effectiveness of administrative arrangements for the provision of food to the Australian Defence Force and identify possible areas for improvement. The audit criteria addressed the adequacy of policy guidance, planning, performance information and risk management in all areas of ADF food provisioning.

The audit reviewed the implementation of the Whole-of-Government Information Technology Infrastructure Consolidation and Outsourcing Initiative (IT Initiative). The objectives of the audit were to examine the administrative and financial effectiveness of the implementation of the IT Initiative, with the focus being on the first four tenders conducted. Accordingly, the audit assessed:

• the effectiveness of the overall planning and implementation of the IT Initiative, taking into account the tendering, contracting and monitoring processes undertaken in respect of Cluster 3, DEETYA/EN, ATO and Group 5;
• the extent to which those latter processes have contributed to the achievement of the objectives of the IT Initiative; and
• the extent to which the Commonwealth's interests have been adequately protected within this context.

This follow-up audit examined the actions taken by the Department of Veterans' Affairs to address the ANAO's recommendations made in Audit Report No.28 1993-94 regarding the use of private hospitals on behalf of the Repatriation Commission. The recommendations from that audit were aimed at improving the basis and consistency of contracts with the private sector for the use of private hospitals and providing added assurance that quality care was available to the veteran community.

The objective of the audit was to assess the effectiveness of Customs and Border Protection's performance in managing and coordinating enforcement operations against illegal foreign fishing in Australia's northern waters. The audit focused on Customs and Border Protection's role within the whole of government policy coordination framework; the effectiveness of its intelligence support for operational planning and policy and strategy development; its performance in planning, prioritising and administering effective enforcement operations; and its performance in measuring and reporting on the effectiveness of the program.

This cross-portfolio audit reviewed the management of Internet security across ten Commonwealth agencies, with the objective of forming an opinion on the adequacy of Internet security management within the selected agencies. The audit pursued two strands - a review of the management systems employed within agencies including the adequacy of risk assessments, security policies and plans, day to day management and business continuity planning in connection with the agencies' Internet presence, and physical testing of the security arrangements of selected Internet sites. Staff from the Defence Signals Directorate were appointed under the Auditor-General Act 1997 to perform the site testing.

The audit examined whether the Department of Health and Ageing had the performance information necessary to administer the Australian Health Care Agreements. A strong focus of the audit was accountability for performance given the significant size of Commonwealth financial assistance, more than $29.6 billion over 5 years, provided to the States and Territories for the provision of health care services.

The audit objective was to assess the effectiveness of the National Health and Medical Research Council's governance and administrative systems. In order to achieve this objective, the audit addressed three criteria to determine whether the Council had: identified its legislated responsibilities and monitored its legislative compliance; a sound corporate governance framework to support the performance of its legislated functions; and established robust administrative systems to support the performance of its legislated functions.

The main objectives of the audit were to examine DOTARS' response to the heightened threat environment following the events of 11 September 2001, and to determine the extent to which DOTARS' monitoring and compliance regime ensures that the aviation industry complies with its security obligations. The scope of the audit included:

• the respective roles and responsibilities of the organisations involved in aviation security;
• the setting of security settings; DOTARS' monitoring of airport, airline and cargo security;
• the action DOTARS takes in response to security breaches; and
• evaluation of aviation security.

The objective of the audit was to assess the effectiveness of management of the procurement of a major, new capability for the ADF by the DMO and Defence. The audit reviewed the initial capability requirements and approval process; analysed the contract negotiation process; and examined management of the Acquisition and Through-Life-Support Contracts. Coverage of the audit extended from development of the concept for the requirement, to acceptance of deliverables in the period prior to the award of the Australian Military Type Certificate (see shaded area of Figure 1). The audit fieldwork was undertaken during the delivery phase of the Project, following delivery of ARH numbers 1, 2 and 5.