The objective of this audit was to assess the effectiveness of the management of cyber security risks by three government business enterprises or corporate Commonwealth entities. The entities selected for audit are ASC Pty Ltd, the Australian Postal Corporation and the Reserve Bank of Australia.

The ANAO Corporate Plan 2018–19 is the ANAO's key strategic planning document. It guides our operating environment and sets out how we will deliver on our purpose. The corporate plan is complemented by the annual audit work program which reflects the ANAO's audit strategy and deliverables for the coming year.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Security in Government 95 Conference, Canberra

The objective of the Risk Framework and associated programs of risk management activities is to support effective risk management across all ANAO operations.

The 2025–27 version of this publication is available here.

The fifteenth Commonwealth Auditor-General of Australia, Grant Hehir, has prepared a mid-term report reflecting on his first five years in the role. The report presents a description and analysis of the role and impact of audit, as well as analysis of the financial audit and performance audit work of the Australian National Audit Office (ANAO). The report concludes with coverage of ANAO continuous improvement activities across audit quality, better communication, transparency, efficiency and workforce capability.

The objective of this performance audit was to assess the effectiveness of the conduct of the first National Infrastructure Audit and development of the Infrastructure Priority List.

The audit objective was to assess the effectiveness of DEEWR's administration of the National Partnership Agreement on Literacy and Numeracy (LNNP). The three high-level audit criteria used to form a conclusion examined the extent to which DEEWR:

• established sound administrative and payment arrangements consistent with government policy, including through its negotiation of bilateral agreements, implementation plans and reform targets;
• properly managed administrative and payment arrangements; and
• effectively monitored and reported on delivery and outcomes.

The objective of the audit was to assess the effectiveness of the administration, by DoHA and the Commonwealth partners, of the 2008 and 2011 Heads of Agreement for the management, operation and funding of the Mersey Community Hospital (The Commonwealth partners for this audit were the Tasmanian Government Department of Health and Human Services and the Tasmanian Health Organisation – North West).

The objective of the audit was to assess the effectiveness of AGD's arrangements for coordinating the development of the National Identity Security Strategy.

The ANAO's assessment was based on the following criteria:

• governance arrangements for the NISS;
• progress, to date, of the six NISS elements; and
• AGD's administrative arrangements for developing the NISS.

The objective of this report is to provide the Auditor-General’s independent assurance over the status of the selected Major Projects, as reflected in the Statement by the Secretary of Defence, and the Project Data Summary Sheets (PDSSs) prepared by Defence, in accordance with the Guidelines endorsed by the Joint Committee of Public Accounts and Audit.

The objective of the audit was to assess the effectiveness of the Department of Resources, Energy and Tourism’s administration of the Renewable Energy Demonstration Program (REDP), including progress towards achieving the programʹs objectives.

The audit examined whether the department had established effective arrangements to:

• implement REDP, including governance arrangements;
• assess applications for REDP funding assistance and recommend projects to the Minister for funding approval;
• negotiate funding agreements for approved projects; and
• monitor progress towards the achievement of the REDP objective.

The audit process involved an assessment of the accounts receivable function in eight Commonwealth organisations. The objectives of the audit were to assess whether the processing, collection and overall management of the accounts receivable function was being performed in accordance with applicable legislation, government policy, applicable internal controls, and identify better practices in accounts receivable activities.

The overall objective of the preliminary study was to determine whether a performance audit of the management of corporate sponsorship was warranted. Specifically, the areas canvassed during the preliminary study were:

• policies and guidelines for the management of corporate sponsorship;
• integration of corporate sponsorship into agency planning;
• contractual arrangements;
• evaluation of corporate sponsorship within the agency;
• valuation and reporting of corporate sponsorship; and
• costs and benefits associated with corporate sponsorship.

The preliminary study findings did not warrant proceeding to a full performance audit. However, because corporate sponsorship is likely to be a growing area of importance for the Commonwealth, the ANAO concluded that there was value in producing a better practice guide in addition to the audit report.

The objective of this audit was to assess the effectiveness of Tourism Australia's governance arrangements, the management of its marketing contracts, and whether outcomes are being achieved. The audit reviewed Tourism Australia's:

• procurement processes for selecting service providers;
• management of service provider contracts; and
• governance framework including planning, performance management and reporting.

This report complements the interim phase report published in June 2014 (Audit Report No.44 2013–14), and provides a summary of the final audit results of the audits of the financial statements of 251 Australian Government entities, including the Consolidated Financial Statements for the Australian Government.

Integrity is a core value of the Australian National Audit Office (ANAO) — critical in sustaining the confidence of Parliament, strengthening public trust in government and delivering quality audit products. Maintaining strong institutional integrity is essential to the operations and reputation of the ANAO.

The ANAO Integrity Framework provides an overarching structure to the integrity control system, supporting our institution’s integrity. The Framework serves to assist in ethical decision-making and risk, fraud and misconduct management.

Beyond its control system, the ANAO maintains an enduring focus on promoting integrity as a value that is embedded in our work and culture. The ANAO recognises that integrity demands quality not only in our products but also in the behaviours of our people.

The ANAO Integrity Advisor supports the effective and ongoing application of the Integrity Framework by providing advice to staff regarding integrity matters. The Integrity Advisor is responsible for increasing integrity awareness across the organisation and for reporting annually to the ANAO Executive Board of Management on actions taken under the Framework. The Auditor-General publishes the ANAO Integrity Report to provide increased transparency of the measures we undertake to maintain a high-integrity culture in the ANAO.

The audit objective was to form an opinion on the adequacy of a select group of Australian Government agencies' management of Internet security, including following-up on agencies' implementation of recommendations from the ANAO's 2001 audit. The agencies audited were Australian Customs Service (ACS), Australian Federal Police (AFP), Australian Radiation Protection and Nuclear Safety Agency (ARPANSA), Department of Employment and Workplace Relations (DEWR), Department of Industry, Tourism and Resources (DITR) and Medicare Australia. Factors considered in selecting agencies were agency size based on funding levels, whether the agency was included in ANAO's 2001 audit (ACS, ARPANSA, and DEWR), whether the agency's ICT was managed in-house or outsourced, and the nature of the agency's website (that is, general or restricted access).

The audit objective was to form an opinion on the effectiveness of the NHMRC's grant administration. To meet this objective the NHMRC was assessed against four criteria:

• the NHMRC's governance arrangements provide appropriate accountability that it is meeting its objectives and obligations to Government (Chapter 2);
• there are strategic and systematic processes for developing and implementing grant programs (Chapter 3);
• the NHMRC manages grants post-award effectively, and complies with legislative requirements and program directives (Chapters 4 and 5); and
• the NHMRC monitors and evaluates its business to demonstrate that outcomes are being met (Chapter 6).

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Challenges and Opportunities Seminar, Conducted by the Department of Finance, Canberra

An Assurance and Control Assessment audit of recordkeeping was undertaken across four Commonwealth organisations to assess whether their recordkeeping policies, systems and processes accord with requirements under the Archives Act 1983, with relevant government policies, and with accepted standards and recordkeeping principles; and to identify better practices and recommend improvements. The audit addressed both electronic and traditional records.

The objective of this audit was to provide a strategic review on the progress of the Tax Office's implementation of the Change Program.
 
To achieve this, the ANAO examined:

• the planning for, and governance of, the Change Program, particularly in relation to the management of risk and the assurance framework established by the Tax Office, and its management of contractual arrangements for the project;
• implementation issues associated with Releases 1 and 2 of the Change Program, and more specifically in relation to Release 3, the first use of the new ICP system to process FBT returns; and
• the funding of the Change Program, including measurement and attribution of the costs of the project and consideration of any benefits realisation to date.

The objectives of the audit were to provide assurance that Artbank was effectively meeting its charter of: acquiring art by contemporary artists; expanding the number of public places that Artbank's collection is rented and displayed; and managing its collection and rental scheme. The audit also examined Artbank's governance arrangements, and its programmes for marketing, client development, performance management, budgeting, debt management and also sought client feedback on Artbank's operations via a survey.

The objective of the audit was to assess the effectiveness of the design and management of the National Solar Schools Program (NSSP), including demonstrated progress towards achieving the program's objectives.

The objective of this audit was to examine Australia's preparedness to respond to a human influenza pandemic and an outbreak of avian influenza in domestic poultry. The audit assessed:

• the whole of government arrangements for an influenza pandemic;
• action taken by DAFF to implement the recommendations from Exercise Eleusis, which tested the response arrangements for avian influenza;
• DoHA's planning for, and execution of, Exercise Cumpston, which tested the preparedness and response to an influenza pandemic; and
• the establishment, management and deployment arrangements of the National Medical Stockpile.

The objective of the audit was to assess whether the Strategic Projects component of the Regional and Local Community Infrastructure Program has been effectively designed and administered.

The audit objectives were to assess the effectiveness of:

• selected agencies’ administration in developing advertising campaigns and implementing key processes against the requirements of the Australian Government’s campaign advertising framework, and other key legal and administrative requirements; and
• the ongoing administration of the campaign advertising framework.

The objective of the audit was to assess the coordination of Australian Government assistance to Solomon Islands through RAMSI, including the establishment of objectives and an outcomes monitoring framework. In particular, the audit examined arrangements for: coordination between Australian Government agencies; strategic planning and risk management; measuring the effectiveness of RAMSI; and reporting to RAMSI's Australian stakeholders.

The objective of the audit was to assess whether selected Commonwealth organisations had utilised better practice principles when establishing the role, and managing the use of their internal audit groups. In order to evaluate internal audit, the Australian National Audit Office (ANAO) first considered the status and accountabilities of internal audit within the overall governance framework of the organisations audited, in particular its accountabilities to the audit committee.

The audit objective was to determine whether Australian Government agencies were implementing appropriate policies and processes to identify and manage conflicts of interest.

The objective of the audit was to assess the administrative effectiveness of FaHCSIA's management of the GBM initiative, and the extent to which the initiative has contributed to improvements in community engagement and government coordination in the Northern Territory.

The audit focused on FaHCSIA's management of the GBM initiative under the NTER. The audit scope did not include additional functions assigned to some GBMs in the Northern Territory under the National Partnership Agreement on Remote Service Delivery (the National Partnership Agreement), or to Australian Government staff with similar roles and functions supporting the implementation of the National Partnership Agreement in Queensland and Western Australia.