Physical Security Arrangements in Commonwealth Agencies, No.23 2002-2003 Protective security involves the total concept of information, personnel, physical, information technology and telecommunications security. The Commonwealth's Protective Security policy is outlined in the Protective Security Manual (PSM). It provides specific guidance to agencies on the protection of the Commonwealth's assets, personnel and clients from potential security threats. This audit evaluated the protective security policies and practices of seven Commonwealth agencies to determine whether they had established an appropriate physical security control framework based on the principles outlined in Part E of the Commonwealth's Protective Security Manual. The ANAO also examined whether agencies had considered the risks of, and developed an appropriate policy statement on, the physical security arrangements for employees who work from home.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Institute of Internal Auditors (IIA) - Australia SOPAC ?98 The IIA - Australia, South Pacific and Asia Conference

Fedlink was to comprise two elements: a high capacity telecommunications infrastructure (phase 1) and information technology applications which support Internet and Intranet communication, and transactions in a secure environment (phase 2) [which never went ahead]. OGIT sought the services of the ANAO to provide an opinion on the probity of the methodology and procedures applied in the evaluation process for phase 1. Therefore the objectives of this audit were to assist OGIT in the timely identification of any deficiencies in the evaluation of responses from suppliers and options for addressing the deficiencies.

The objective of the audit was to determine whether DEST has effective governance practices for its IT and e- Business; has adequate systems in place to measure the efficiency and effectiveness of its IT and e-Business; implements and maintains appropriate quality standards within its IT and e-Business systems; and implements proper controls, including risk management, to achieve maximum benefits from its IT and e- Business. The audit examined education and training services provided, or managed, by DEST via IT or the Internet.

The objective of the audit was to assess the administrative effectiveness of Australian Customs Services (Customs) drug detection strategies for air and containerised sea cargo and small craft activity. Within the scope of the audit, the following areas were examined :

• intelligence and law enforcement cooperation;
• air and containerised sea cargo;
• cargo examinations and technology;
• small craft activities;
• Customs funding arrangements (including funding for NIDS initiatives): and
• governance, including performance reporting.

The audit was conducted as a joint financial statement and performance audit of HIC's IT systems. The objective of the financial statement component of the audit was to express an opinion on whether HIC could rely on its IT systems to support production of a reliable set of balances for the financial statements. The objective of the performance audit component was to determine whether HIC's IT systems' outputs met quality and service delivery targets.

Aviation traffic data plays an important role in informing decisions about the safety of the airways system, including such matters as the need for navigation facilities, communication links, air traffic control towers and rescue/fire fighting services. The objective of the limited scope audit was to examine the accuracy of the data on air traffic movements collected by Airservices Australia.

The focus of the audit was to examine recent selected property sales within the portfolios owning the majority of Commonwealth property, ie. those of Defence, Administrative Services and Veterans' Affairs. The approach taken in the audit was to select property sales from each of the three agencies and review the files and transactions related to those sales. The sales were evaluated against criteria which included establishment of sales timetables, sales methods, and completion processes such as the criteria for the selection of tenders and accountability. The objectives of the audit were to assess departments' management of the sale process associated with selected property sales with regard to:

• the extent to which the individual property sale objectives were achieved;
• how departments managed the sales to ensure that the Commonwealth received fair value;
• whether the departments' sale arrangements adequately protected the Commonwealth's interests, including minimising ongoing Commonwealth risk; and
• identifying principles of better practice employed by agencies in connection with these sales.

Allegations were made to the Senate Economics References Committee that the Australian Taxation Office and Australian Customs Service (Customs) had failed to pursue several cases of detected sales tax fraud. The Committee believed that this alleged failure may have stemmed from coordination problems between the two agencies. The Committee requested the Auditor-General to investigate this matter and report his findings to the Parliament.

The audit examined the Commonwealth's management of the Building Better Cities Program to identify areas where improvement was needed and where lessons learned from BCP could be useful in other programs.