Mr Mr Ian McPhee - Auditor-General for Australia, presented to the Risk Management Institute of Australia and the Australasian Compliance Institute, at the 2nd Annual GRC Conference, Melbourne

The objective of the audit was to assess whether entities properly accounted for software assets, and adopted an integrated planning approach to inform software asset investment decisions.

The main focus of the audit was on whether entities accounted for software costs in accordance with relevant accounting standards and the FMOs, paying particular attention to the standard elements of an internal control framework and accounting practices. In addition, in the context of software asset planning, the audit considered whether entities assessed the risks associated with software assets, used life-cycle costing approaches, and aligned ICT and capital management plans, to inform decision-making on software asset investments.

The objective of this audit was to examine the effectiveness of Defence’s management of explosive ordnance by the end users of this materiel in Air Force, Army and Navy (the Services). In particular, the focus was on the effectiveness of arrangements for the oversight and physical control of explosive ordnance once it is issued to Service units.

The audit reviewed Defence’s policies, procedures, processes and inventory management systems for explosive ordnance at the unit level in the ADF, from receipt and storage through to the use or return of explosive ordnance.The audit also examined the relationship between the management of explosive ordnance at the unit level and the Explosive Ordnance Services Contract and, where relevant, the regional Garrison Support Services (GSS) Contracts.

The audit objective was to assess how well agencies manage their websites. Particular attention was given to the audited agencies' website purposes, risk management and planning, policies, content management procedures, and performance monitoring and reporting. These elements provide the framework for the design, implementation and operation of websites.

The objective of this audit was to assess whether agencies had effectively administered credit cards, including having complied with legislative and internal requirements.

The objective of the Risk Framework and associated programs of risk management activities is to support effective risk management across all ANAO operations.

The objective of the audit was to assess the effectiveness of the ATO’s compliance management approach in the SME market.

The objective of the audit was to assess the effectiveness of DIAC’s management of the student visa program. Three key areas were examined in the audit: the processing of student visa applications; ensuring compliance with student visa conditions; and cooperation between DIAC and DEEWR.

The objective of the audit was to continue to examine the progress of the implementation of the annual performance statements requirements under the PGPA Act and the PGPA Rule by the selected entities. The audit was also designed to:

• provide insights to entities more broadly, to encourage improved performance; and
• continue the development of the ANAO’s methodology to support the possible future implementation of annual audits of performance statements.

The objective of the audit was to assess the effectiveness of the Australian Fisheries Management Authority’s management of Commonwealth fisheries.