This cross-portfolio audit reviewed the management of Internet security across ten Commonwealth agencies, with the objective of forming an opinion on the adequacy of Internet security management within the selected agencies. The audit pursued two strands - a review of the management systems employed within agencies including the adequacy of risk assessments, security policies and plans, day to day management and business continuity planning in connection with the agencies' Internet presence, and physical testing of the security arrangements of selected Internet sites. Staff from the Defence Signals Directorate were appointed under the Auditor-General Act 1997 to perform the site testing.

A Business Support Process audit of the administration of grants in small to medium organisations was undertaken across six Commonwealth organisations to assess whether agencies had implemented appropriate risk management strategies for grant programs; evaluate whether grants had been administered in accordance with the appropriate legislation, Commonwealth guidance, and other accepted internal controls; and to recommend improvements in the controls and practices relating to grants administration.

The Defence Estate comprises the land, buildings and other facilities that Defence uses across Australia. These facilities are vital to achieving the Defence mission - to prevent or defeat the use of armed force against Australia and its interests. The Estate has a gross replacement value of $14.8 billion. Defence Estate Organisation's (DEO's) Facilities Operations (FACOPS) Program delivers general maintenance and minor new works to Defence facilities on a regional basis across the country. DEO's Estate Operations and Planning Branch and its nine Regional Estate Centres are responsible for the FACOPS Program. Resources available for the Program have been reduced in recent years. The total DEO budget for 2000-01, which includes funds for capital works, facilities operations and property management, is $2.6 billion. Of this total, the FACOPS Program has a cash allocation of $213 million and an additional $15.6 million for employee expenses associated with the Program's 283 staff. The objective of the audit was to assess the efficiency and effectiveness of selected Defence facilities operations, including tendering and contracting, with a view to adding value with practical recommendations for enhancing operations.

The audit reviewed whether DEWR is efficiently and effectively managing the provision of entitlements to eligible former employees under the Employee Entitlements Support Scheme (EESS) and its replacement, the General Employee Entitlements and Redundancy Scheme (GEERS). The audit sought to determine whether DEWR had a mechanism to ensure that claims were properly assessed, taking into account the prevailing risks, whether performance information was adequate, whether relationships with claimants and insolvency practitioners were managed appropriately and whether a cost-effective recovery strategy was in place.

The objective of this audit was to form an opinion on the adequacy of, and to identify best practice in, Commonwealth agencies' electricity procurement systems and procedures. In doing so, the ANAO also formed an opinion on the level and results of participation by Commonwealth agencies in the National Electricity Market. The audit concentrated on adherence by agencies to the principles of the Commonwealth Procurement Guidelines: Core Policies and Principles (March 1998), emphasising the importance of Commonwealth agencies achieving value-for-money (VFM) in their purchasing. VFM is one of the six principles on which the Guidelines are based.

The audit reviewed the Department of Employment and Workplace Relations (DEWR) management of the provision of employment services information to job seekers up to the point where job seekers are referred to Job Network. The objective of the audit was to examine the administrative effectiveness of DEWR's management of the provision of information to job seekers, focusing on determining what information should be provided, developing an effective means of providing information, and assuring that information is being delivered effectively.

The objective of the audit was to evaluate the efficiency and effectiveness of Austrade's management of customer services to Australian exporters, with particular reference to:

• performance as a customer-focused organisation;
• achievement of quality customer service through its client service initiatives; and
• measurement and evaluation of its customer service performance.

The objective of the audit was to assess the workforce planning systems used by the Australian Defence Force with a view to identifying better practice and making recommendations where appropriate to promote overall effectiveness of planning systems. The main issues were the management of the workforce planning function and determination of workforce requirements. The audit concentrated on the full-time military workforce, but also included the issue of the flexibility for military units to employ reserves or civilians where appropriate.

The objective of the audit was to determine whether the controls and measures employed by FaCS and Centrelink to deliver Parenting Payment Single (PPS) payments were effective and efficient. To achieve this, the audit focused on four key areas. These were:

• the quality of performance measures used by FaCS and Centrelink;
• the effectiveness of FaCS' methodology for estimating the levels of risk of incorrect payment to PPS customers and the impact of these incorrect payments on the integrity of program outlays;
• the correctness of Centrelink's processing of reassessments; and
• the improvements to preventive controls such as training, guidance material, and the Quality On-Line system.

The ANAO reviewed arrangements for the development of the department's fraud policy, fraud risk assessment and fraud control plan within the core functional areas of the department that are responsible for these activities. The audit also examined the operational procedures and guidelines that were in place to implement the departments' fraud policy. The objective of the audit was to assess whether DVA has implemented appropriate fraud control arrangements in line with the Fraud Control Policy of the Commonwealth and whether these arrangements operate effectively in practice.

Special Benefit is a social security income support payment for people who are unable to support themselves or their dependents, and who are not otherwise entitled to any other income support payment. Its objective is to ensure that such people have adequate levels of income. The objective of the audit was to assess the extent to which new claims for Special Benefit had been determined in compliance with the Social Security Act, the Guide to the Act and other relevant guidelines, and whether Centrelink and FaCS had appropriate procedures to help ensure such compliance.

The objectives of the audit was to examine the effectiveness and efficiency of DIMIA's decision-making processes and management systems for delivering the parent and partner aspects of the family stream of the Migration Program.

The family stream of Australia's Migration Program enables the reunion of immediate family members of Australian citizens, permanent residents or eligible New Zealand citizens. It consists of four main categories;

• Partner;
• Child;
• Parent; and
• Other family.

In a military context, individual readiness refers to the ability of an individual member to be deployed, within a specified notice period, on operations, potentially in a combat environment, to perform the specific skills in which he or she has been trained. Individual readiness is the foundation on which military preparedness is built. Maintenance of a specified level of individual readiness in peacetime (along with other factors such as equipment readiness and collective training) influences the speed with which personnel can deploy on operations. The objective of this audit is to ensure that members can be deployed on operations, potentially in a combat environment, to perform their specific skills within a notice period of 30 days.

The objective of the audit was to examine Coastwatch's administration of the Australian civil coastal and offshore surveillance and response service. In particular, the audit focused on Coastwatch's:

• coordination with its clients and external service providers;
• surveillance and response operations; and
• aspects of its corporate governance arrangements bearing on performance and associated accountability.

The IIF program is designed to redress the low level of provision in Australia of high risk venture capital for small new technology - based companies commercialising research and development. The objective of the audit was to determine whether the IIF program was being effectively managed by the Industry Research and Development (IR&D) Board and the Department of Industry, Tourism and Resources to achieve the program objectives. The audit focused on corporate governance arrangements for program administration, the selection process to award licences, the safeguards to protect the Commonwealth's financial interests, management of licence agreements, and program performance management. The audit also examined program results to date from available data.

The ANAO reviewed arrangements for the development of the department's fraud policy, fraud risk assessment and fraud control plan within the core functional areas of the department that are responsible for these activities. The audit also examined the operational procedures and guidelines that were in place to implement the department's fraud policy. The objective of the audit was to assess whether AFFA has implemented appropriate fraud control arrangements in line with the Fraud Control Policy of the Commonwealth and whether these arrangements operate effectively in practice.

The Australian Prudential Regulation Authority (APRA) was established on 1 July 1998 as the prudential regulator of banks and other authorised deposit-taking institutions (ADIs), life insurance companies (including friendly societies), general insurance companies, superannuation funds and retirement savings accounts. ANAO's objectives for this audit were to assess the efficiency and effectiveness of APRA's prudential supervision of banks. Prudential supervision aims to protect depositors by ensuring that financial institutions adopt prudent risk management practices designed to ensure their continuing solvency and liquidity. APRA is a relatively new organisation, established in July 1998 and becoming responsible for prudential supervision of all ADIs from July 1999. ANAO concluded that there are steps APRA can take in a number of areas to improve its supervisory practices, including improving the administration of the ADI supervisory levy; strengthening its risk management approach; and maintaining closer adherence to international standards for prudential supervision issued by the Basle Committee on Banking Supervision. ANAO made five recommendations concerning administration of levies, risk-based supervision and supervision of cross-border banking. APRA agreed, or agreed with qualifications, to all recommendations, as well as agreeing with the overall audit conclusions.

The objectives of the audit were to examine:

• the effectiveness of agencies' implementation of the current GBEs governance framework;
• the extent to which agencies and GBEs comply with the Governance Arrangements and legislative requirements; and
• whether the GBE monitoring system provides an effective level of accountability to Ministers and to the Parliament.

The objective of the audit was to assess whether FaCS had established effective business arrangements with Centrelink to help ensure that new claims for Age Pension were properly assessed in accordance with the Social Security Law and the Guide to the Social Security Law. In the context of the audit objective, the primary issues examined were whether FaCS had:

• established an appropriate business framework;
• adopted an appropriate risk management approach;
• appropriately monitored and evaluated performance; and
• provided relevant business support to Centrelink.

The audit reviewed management of the Commonwealth's role in preparing for, and managing, pest and disease emergencies requiring a rapid response. The audit focused on the role of the Department of Agriculture, Fisheries and Forestry -Australia (AFFA), which is the Commonwealth Department with primary portfolio responsibility for coordinating the national and international response to an emergency. The audit did not address preventative measures such as quarantine and border controls; controlled release of exotic diseases or pests; or emergencies associated with previously known endemic diseases, food safety or chemical residue issues.

Mr P.J. Barrett (AM) - Auditor-General for Australia, addressed the Defence Audit and Program Evaluation Committee (DAPEC)

The objective of the audit was to examine the effectiveness and efficiency of the administrative arrangements for the establishment and operation of the Green Corps program. Green Corps is a voluntary program for young Australians between 17 and 20 years old to receive accredited training in a range of skills such as bush regeneration and habitat protection. The program is delivered through a contractual arrangement. It was introduced in 1996 with a program allocation of $41.7 million over three years. The focus of the audit was on the Department of Education, Training and Youth Affair's administration of the program, including the management of the contract.

The objectives of the audit were to: assess compliance with the Stevedoring Levy (Collection) Act 1998 and Stevedoring Levy (Imposition) Act 1998 and other relevant legislation; assess the effectiveness of the administrative and financial controls regarding the collection of the Stevedoring Levy by DoTRS and the provision of redundancy payments to eligible employees of stevedoring companies and the management of the funding of those payments by way of borrowings by MIFCo; and review the administrative efficiency of the redundancy payment and Stevedoring Levy collection aspects of the waterfront redundancy scheme.

The audit examined the management of software licensing by five Commonwealth agencies. The objective of the audit was to provide assurance to these agencies and the Parliament that:

• effective controls are in place to ensure the physical security of software media;
• the risks associated with the use of illegal software are being effectively managed; and
• compliance with software licence conditions is being adequately monitored.

The objective of the performance audit was to assess the administrative effectiveness of DIMA's business entry program against the background of the Business and Temporary Entry program objective, with particular regard to whether:

• the existing performance management mechanisms and compliance monitoring strategies support the achievement of program outcomes and outputs;
• the quality of decision-making;
• business processes facilitate prompt visa decision-making consistent with program objectives; and
• decision-making support mechanisms promote robust and timely decision-making.

The 30 per cent Private Health Insurance Rebate is a financial incentive for individuals to purchase health insurance cover. The rebate provides for a reimbursement or discount of 30 per cent of the cost of private health insurance. It is available to all Australians who are eligible for Medicare and have private health insurance. The objective of the audit was to determine the effectiveness of Commonwealth Government agencies administration of the rebate.

Fedlink was to comprise two elements: a high capacity telecommunications infrastructure (phase 1) and information technology applications which support Internet and Intranet communication, and transactions in a secure environment (phase 2) [which never went ahead]. OGIT sought the services of the ANAO to provide an opinion on the probity of the methodology and procedures applied in the evaluation process for phase 1. Therefore the objectives of this audit were to assist OGIT in the timely identification of any deficiencies in the evaluation of responses from suppliers and options for addressing the deficiencies.

Mr Ian McPhee - Auditor-General for Australia, presented to the Global Working Group 10th Annual Meeting, Norway

The primary objective of the audit was to assess the economy, efficiency and effectiveness of DoTRD's implementation of Annex 17 in the Australian aviation environment. The ANAO concluded that DoTRD has established a regulatory regime which ensures Australia's compliance with the standards embodied in Annex 17. However, there are areas where Australia's aviation security regime can be strengthened even further including; developing a more robust approach to risk management, developing a longer-term perspective to DoTRD's planning structure, development of proactive alliances with aviation regulators in neighbouring countries in the Asia-Pacific region, further improvement of the airport audit process, development and implementation of an evaluation strategy, development of a formal transparent approach to enforcement.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Secretaries' Forum