This edition of audit insights covers audit reports tabled in Parliament during the fourth quarter of 2017–18 with a focus on the key learnings relating to cyber resilience. Cyber security is an increasing risk across government and one that requires attention by Accountable Authorities.

The objective of the audit was to assess whether Defence is effectively managing the EO Services Contract.

The audit focused mainly on Defence's contract management framework, including the arrangements to monitor the contractor’s performance in delivering services under the contract. The audit also examined the processes used by Defence to develop the current version of the contract and the extent to which the revised contract, as negotiated in 2006, provides an assurance of better value for money when compared to the original contract signed in 2001.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Department of Employment, Workplace Relations and Small Business Leadership Development Program

The objective of the audit was to examine the accuracy of Medicare claims processing, including the adequacy and operation of relevant manual and system processes. The audit assessed the:

• adequacy and operation of relevant manual and system controls used to support the reliable processing of Medicare claims, and
• accuracy of the assessing and processing of Medicare claims, using Computer Aided Audit Techniques (CAATs).

The objective of the audit was to examine Defence's management of leases that have resulted from property sale and leaseback transactions. Leases subject to review were for a period of ten or more years and included the following six properties: the Defence Plazas in Sydney and Melbourne; the Hydrographic Office Wollongong; DNSDC Moorebank; Campbell Park Offices in Canberra; and ADC Weston Creek in Canberra. The audit examined the process for identifying the properties for sale and leaseback and the sale approval process. The audit sought to determine the basis on which the properties were proposed for sale and leaseback and the financial impact for the Government. The audit also reviewed the lease terms and conditions to determine whether they protect the Government's interests, and examined Defence's management of commitments arising from the leases.

The objective of the audit was to review and assess the use, and management of, automatic exchanges of information under Double Taxation Agreements (DTAs) by the Tax Office.

The objective of the audit was to examine the effectiveness of the AFP's approach to its management of the implementation of NPIs.

The audit objective was to assess the Tax Office's effectiveness in administering the tax obligations of non-residents.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Senior Executive Leadership Program - Preparatory day, Hill Station, Canberra

The audit reviewed the efficiency and effectiveness of the Department of Health and Ageing's (Health's) planning and conduct of the review undertaken to determine the recommendation to the Government on whether or not to exercise the extension option available to the Commonwealth under the Plasma Fractionation Agreement with CSL Limited. The audit was undertaken in response to a recommendation of the Joint Committee of Public Accounts and Audit.

The audit objective was to assess the effectiveness of the Department of Human Services’ management of the trials of intensive service delivery for customers with complex needs.

The audit objective was to assess the effectiveness of the department's administration of general recurrent grants paid to the States and Territories for government schools. To achieve this, the ANAO assessed whether the department:

• paid the correct amount of general recurrent grants to the States and Territories;
• effectively managed the agreements with the States and Territories; and
• monitored progress towards achieving the National Goals for Schooling in the Twenty-First Century.

The objective of this audit was to assess the effectiveness of the Australian Government Reconstruction Inspectorate, supported by the National Disaster Recovery Taskforce, in providing assurance that value for money is being achieved in recovery and reconstruction expenditure in Victoria.

The objective of the audit was to assess the effectiveness of Australia’s arrangements to meet its treaty obligations under three selected treaties:

• International Convention on Civil Liability for Bunker Oil Pollution Damage 2001;
• Agreement between Australia and the International Atomic Energy Agency for the Application of Safeguards in connection with the Treaty on the Non-Proliferation of Nuclear Weapons of 1 July 1968 and Additional Protocol; and
• Convention on the Rights of the Child 1990.

The objective of this audit was to examine Australia's preparedness to respond to a human influenza pandemic and an outbreak of avian influenza in domestic poultry. The audit assessed:

• the whole of government arrangements for an influenza pandemic;
• action taken by DAFF to implement the recommendations from Exercise Eleusis, which tested the response arrangements for avian influenza;
• DoHA's planning for, and execution of, Exercise Cumpston, which tested the preparedness and response to an influenza pandemic; and
• the establishment, management and deployment arrangements of the National Medical Stockpile.

The objective of the audit was to assess the effectiveness of the Tax Office's administration of the wine tax.

Four key areas were examined in the audit: governance arrangements; interpretative assistance and advice; compliance approaches for Australian entities; and administering the rebate for New Zealand wine producers.

The ANAO conducted fieldwork in the Tax Office's Adelaide office between May and September 2010 and also held discussions with representatives from Customs, the Department of the Treasury (Treasury) and New Zealand Inland Revenue. The ANAO also consulted with representatives of wine producers, wholesalers, retailers, tax agents and key industry associations, seeking their views on elements of the Tax Office's administration of the wine tax.

The objective of the audit was to assess the effectiveness of Customs and Border Protection's risk-based management of end-to-end processing of incoming international air passengers in achieving border security and passenger facilitation outcomes.

The objective of the audit was to assess whether DEWR's management and oversight of Job Placement and matching services is effective, in particular, whether: DEWR effectively manages, monitors and reports the performance of JPOs in providing Job Placement services; DEWR effectively manages the provision of matching services (including completion of vocational profiles and provision of vacancy information through auto-matching) to job seekers; Job seeker and vacancy data in DEWR's JobSearch system is high quality and is managed effectively; and DEWR effectively measures, monitors and reports Job Placement service outcomes.

The objective of this audit was to assess and report on the progress being made by Government agencies in achieving better practice in green office procurement and sustainable office management. The scope of the audit included agencies incorporated under the Financial Management and Accountability Act 1997 as well as a sample of bodies incorporated under the Commonwealth Authorities and Companies Act 1997. Sixty-three agencies were included in an audit survey. Detailed validation was carried out in nine of these agencies.

The audit objective was to assess the effectiveness of FaHCSIA and DHS’ administration of New Income Management in the Northern Territory.

The objective of this audit was to evaluate whether selected Australian Government agencies were effectively managing security risks arising from the use of contractors. To address this objective, the audit evaluated relevant policies and practices in the audited agencies against a series of minimum requirements in the management of security issues in procurement and contracting activity. These minimum requirements were developed from the guidance and standards contained in the PSM and also from the ANAO's previous protective security audits.

The audit focused on two broad types of contracting arrangements: contracting of security functions; and contracting of any service or business function that requires, or which has the potential to require, contractors to access sensitive or security classified information.

The following Australian Government agencies were involved in this audit:

• Australian Customs Service (Customs);
• Commonwealth Superannuation Administration (ComSuper);
• Department of Finance and Administration (Finance); and
• Department of Foreign Affairs and Trade (DFAT).

In addition, the Attorney-General's Department, which is responsible for the maintenance of the PSM and for providing advice on contemporary protective security policies and practices, was consulted during the audit.

The objective of the audit was to assess the effectiveness of annual Certificate of Compliance processes for FMA Act agencies. To form a conclusion against the audit objective, the audit considered: Finance’s administration of the Certificate process at a whole-of-government level; selected agencies’ annual Certificate processes; and, the design and impact of the Certificate.

The objective of the audit was to assess the effectiveness of the Department of Veterans’ Affairs’ administration of residential care payments.

On 9 May 2006, the Auditor-General advised the then Minister for Transport and Regional Services that he would undertake a performance audit and that the specific audit objectives and approach would be established once officers of the Australian National Audit Office (ANAO) had the opportunity to undertake preliminary enquiries with senior staff in Airservices Australia and the Department of Transport and Regional Services (DOTARS). On 31 May 2006, the Auditor-General designated a performance audit under Section 18 of the Auditor-General Act 1997 (Auditor-General Act). The objectives of the performance audit were to: examine the development and administration by Airservices Australia of its contracts with the Solomon Islands Government for upper airspace management; assess the regularity of payments made under the contracts and steps taken by Airservices Australia in respect of any irregularities; and make recommendations for any improvements in the processes employed by Airservices Australia in developing and administering these and similar contractual arrangements.

The objective of the audit was to assess the effectiveness of Department of Infrastructure and Transport’s and the Attorney‐General’s Department’s management of the Aviation and Maritime Security Identification Card (ASIC and MSIC) schemes.

The objective of the ANAO's audit was to examine the effectiveness of DAFF's implementation and administration of the buyback of fishing concessions under the Securing our Fishing Future structural adjustment package.

This edition of Audit Insights summarises key messages for all Australian government entities from a series of Australian National Audit Office (ANAO) performance audits that have examined service delivery through other entities. It discusses the importance of establishing appropriate service delivery governance arrangements between entities, understanding risk tolerances and managing service delivery risks, and establishing performance monitoring and measurement arrangements.

The objective of the audit was to assess the effectiveness of the NCA's management of its asset portfolio. This included examining its asset management systems and the management of selected contracts that the NCA has in place to maintain specific assets.

The objective of the audit was to assess whether entities properly accounted for software assets, and adopted an integrated planning approach to inform software asset investment decisions.

The main focus of the audit was on whether entities accounted for software costs in accordance with relevant accounting standards and the FMOs, paying particular attention to the standard elements of an internal control framework and accounting practices. In addition, in the context of software asset planning, the audit considered whether entities assessed the risks associated with software assets, used life-cycle costing approaches, and aligned ICT and capital management plans, to inform decision-making on software asset investments.

The objective of the audit was to assess the effectiveness of the Department of Human Services' (DHS) administration of the shopfront co-location of DHS services.