Audit Lessons — Management of Corporate Credit Cards is intended for officials working in financial management or governance roles with responsibility for the management of corporate credit cards.

The report summarises the audit and other related activities of the ANAO in the period June to December 2000. It provides a consolidated report of the ANAO's integrated audit products tabled during the period. Key issues examined in the ANAO's performance audit activity in the period were:

• risk management in a corporate governance framework;
• outsourcing and asset sales;
• contract management;
• service delivery;
• data management/management information systems; and
• legislative implementation.

The report also summarised the results of a report summarising the final results of the audits of the financial statements of Commonwealth entities; and dealt with issues regarding financial management issues, controls and processes arising from the financial audit activities conducted during the period.

The audit reviewed whether DEWR is efficiently and effectively managing the provision of entitlements to eligible former employees under the Employee Entitlements Support Scheme (EESS) and its replacement, the General Employee Entitlements and Redundancy Scheme (GEERS). The audit sought to determine whether DEWR had a mechanism to ensure that claims were properly assessed, taking into account the prevailing risks, whether performance information was adequate, whether relationships with claimants and insolvency practitioners were managed appropriately and whether a cost-effective recovery strategy was in place.

The aim of Audit Lessons is to communicate lessons from our audit work and to make it easier for people working within the Australian public sector to apply those lessons.

This edition is targeted at security, information communications technology (ICT) and human resources officials responsible for managing ICT system access and the offboarding process for employees and contractors separating from an entity.

The objective of this audit was to assess the effectiveness of the Department of Finance’s administration of the Parliamentary Expenses Management System project.

The objective of this audit was to assess the effectiveness of the Australian Reinsurance Pool Corporation’s (ARPC) management of the Terrorism Reinsurance Scheme.

The objective of the performance audit was to review the progress in the delivery of contractual commitments for Industry Development (ID) for the five contracts awarded under the IT Outsourcing Initiative. In particular, the audit examined the effectiveness of the monitoring by DCITA of achievement against contractual commitments for ID; assessed the impact of changes to the IT outsourcing environment on the management and monitoring of ongoing ID obligations; and identified practices that have improved administrative arrangements.

The objective of the audit was to assess the Personnel Management Key Solution Project's planning and approval processes and its contract and project management. The audit addresses the scope of the delivered system, the expectations of end-users, and the system's ability to meet their capability requirements.

The audit objective was to assess the effectiveness of agencies' contract management by determining if they had sound practices and systematic approaches to this activity. Particular attention was given to each agency's:

• day-to-day management of individual contracts; and
• approach to managing its contract population.

This audit is a part of the ANAO's protective security audit coverage. The objective of this audit was to determine whether agencies audited had developed and implemented sound IT security management principles and practices supported by an IT security control framework, in accordance with Australian Government policies and guidelines. The audit at each agency examined the framework for the effective management and control of IT security, including the management of IT operational security controls and, where applicable, was based on the Australian Government protective security and information and communications technology (ICT) security guidelines that were current at that time.