This audit is a part of the ANAO's protective security audit coverage. The objective of this audit was to determine whether agencies audited had developed and implemented sound IT security management principles and practices supported by an IT security control framework, in accordance with Australian Government policies and guidelines. The audit at each agency examined the framework for the effective management and control of IT security, including the management of IT operational security controls and, where applicable, was based on the Australian Government protective security and information and communications technology (ICT) security guidelines that were current at that time.

The objective of the audit was to assess the administrative effectiveness of FaHCSIA's and IBA's management of the HOIL program. In particular, the audit examined the administrative design of the program, its implementation and progress in achieving the expected results.

The objective of the audit was to examine the effectiveness of Defence’s implementation of reforms to capability development since the introduction of the two-pass process for government approval of capability projects and government’s acceptance of the reforms recommended by the Mortimer Review. The scope of this audit included the requirements phase and, to a limited extent, the acquisition phase of major capability development projects, focusing upon changes flowing from the major reforms.

The audit's objective was to assess, and report to Parliament on, the ATO's administration of petroleum excise collections. The audit examined whether the ATO had implemented effectively administrative arrangements for the collection of petroleum excise since the transfer of the function from Customs in 1999. Areas that were examined relating to administration of petroleum excise were:

• governance arrangements;
• licensing arrangements;
• compliance management;
• investigations; and
• revenue management.

The audit also reviewed the role of Customs in performing functions directly related to petroleum excise collections and key elements of the management relationship between the ATO and Customs in this area.

This annual report documents the performance of the Australian National Audit Office (ANAO) in the financial year ending on 30 June 2009. It includes a foreword by the Auditor-General, an overview of the Office, a report on performance, details about management and accountability, and the financial results.

The objective of the audit was to examine the effectiveness of the administration of the Gateway review process by Finance and FMA Act agencies. The audit also examined the extent to which those Gateway reviews that have been conducted have contributed to improvements in the delivery of major projects undertaken by FMA Act agencies.

The study examined aggregated benchmarking measures of cost, efficiency quality and better practice for nineteen Commonwealth organisations and compared the results with that of an international group. The objective of the study was to obtain and report on over time quantitative and qualitative data relating to finance function activities as they operate in Commonwealth organisations.

The objectives of the audit were to provide assurance that Artbank was effectively meeting its charter of: acquiring art by contemporary artists; expanding the number of public places that Artbank's collection is rented and displayed; and managing its collection and rental scheme. The audit also examined Artbank's governance arrangements, and its programmes for marketing, client development, performance management, budgeting, debt management and also sought client feedback on Artbank's operations via a survey.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Public Sector Risk Management Conference

The objective of this follow-up audit is to examine DEEWR's implementation of the six recommendations made in the ANAO's 2003 report. This audit has had regard to the issues underlying the recommendations, and new administrative issues affecting their implementation.