The objective of this audit was to evaluate whether selected Australian Government agencies were effectively managing security risks arising from the use of contractors. To address this objective, the audit evaluated relevant policies and practices in the audited agencies against a series of minimum requirements in the management of security issues in procurement and contracting activity. These minimum requirements were developed from the guidance and standards contained in the PSM and also from the ANAO's previous protective security audits.

The audit focused on two broad types of contracting arrangements: contracting of security functions; and contracting of any service or business function that requires, or which has the potential to require, contractors to access sensitive or security classified information.

The following Australian Government agencies were involved in this audit:

• Australian Customs Service (Customs);
• Commonwealth Superannuation Administration (ComSuper);
• Department of Finance and Administration (Finance); and
• Department of Foreign Affairs and Trade (DFAT).

In addition, the Attorney-General's Department, which is responsible for the maintenance of the PSM and for providing advice on contemporary protective security policies and practices, was consulted during the audit.

The ANAO Audit Report No. 51 of 2001/02, Research Project Management, Commonwealth Scientific and Industrial Research Organisation, assessed the effectiveness of CSIRO in administering research projects to deliver required results. The audit made nine recommendations designed to improve project management in CSIRO. The purpose of this follow-up audit was to assess the extent to which CSIRO has implemented the recommendations of the previous audit and of the JCPAA.

The audit reviewed the Australian Maritime Safety Authority's management of the navigation aids network, which is an important factor in shipping safety. The objectives of the audit were to determine whether AMSA's management of the network provides for the strategic needs of marine navigation in Australian waters, and whether AMSA's management was efficient and effective. The audit focused on AMSA's strategic planning, the management of revenue and expenditure to support the network, its contract management practices, and its accountability and performance reporting arrangements.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presentation to Macquarie University

Mr P.J. Barrett (AM) - Auditor-General for Australia, Address to University of Canberra Students - Graduate Certificate in Performance Audit

The objective of the audit was to assess whether FaCS had established effective business arrangements with Centrelink to help ensure that new claims for Age Pension were properly assessed in accordance with the Social Security Law and the Guide to the Social Security Law. In the context of the audit objective, the primary issues examined were whether FaCS had:

• established an appropriate business framework;
• adopted an appropriate risk management approach;
• appropriately monitored and evaluated performance; and
• provided relevant business support to Centrelink.

Mr Mr Ian McPhee - Auditor-General for Australia, presented at the 2014 National Conference of the Risk Management Institution of Australasia, Brisbane

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the National Public Sector Accountants Conference, Adelaide

The audit considered the way organisations in the APS process and use cost information. The specific objective was to form an opinion on whether costing processes and uses were: valid, cost effective, and in accordance with the principles of better practice.

The audit reviewed the ATO's collection and management of activity statement information. The audit paid particular regard to:

• the environment into which activity statements were introduced;
• taxpayer concerns with activity statement administration;
• the mechanisms the ATO uses to capture and process activity statements;
• the change processes the ATO uses to change and test activity statement IT systems; and
• the management methodology used to report on, and assess the performance of, activity statement related systems and processes.