The objective of this audit was to evaluate whether selected Australian Government agencies were effectively managing security risks arising from the use of contractors. To address this objective, the audit evaluated relevant policies and practices in the audited agencies against a series of minimum requirements in the management of security issues in procurement and contracting activity. These minimum requirements were developed from the guidance and standards contained in the PSM and also from the ANAO's previous protective security audits.

The audit focused on two broad types of contracting arrangements: contracting of security functions; and contracting of any service or business function that requires, or which has the potential to require, contractors to access sensitive or security classified information.

The following Australian Government agencies were involved in this audit:

• Australian Customs Service (Customs);
• Commonwealth Superannuation Administration (ComSuper);
• Department of Finance and Administration (Finance); and
• Department of Foreign Affairs and Trade (DFAT).

In addition, the Attorney-General's Department, which is responsible for the maintenance of the PSM and for providing advice on contemporary protective security policies and practices, was consulted during the audit.

The objective of the audit was to assess the effectiveness of AGD's administration of grants provided under the Respondents Scheme. The audit considered the context within which the Respondents Scheme operates and focused on assessing the administration of the scheme including its financial management within AGD.

The audit objective was to assess the effectiveness of DoHA's management of CACPs in fulfilling the legislated objectives of the program.

The audit reviewed Australian Development Scholarships (ADS). ADS's are the principal mechanism by which Australia provides scholarship assistance for individuals from developing countries to undertake studies at Australian education institutions. The scholarships help to meet the human resource development needs of developing countries and contribute to their development across various sectors. Scholarships also have an important role in fostering and sustaining Australia's relations with developing countries, particularly in the Asia-Pacific region. The objective of the audit was to evaluate AusAID's management of the ADS scheme.

The objective of the audit was to assess whether Customs has implemented effective measures to control IUU fishing in the Southern Ocean. The audit examined Customs' management and coordination of enforcement operations in the Southern Ocean, with particular emphasis on:

• the approach to assessing and reporting SOMPR program performance, and whether outcomes are being met;
• coordination with other stakeholder agencies to meet program outcomes;
• the operational planning framework, management of human and physical resources and contract management; and
• the management of the deployment and operation of program maritime assets.

Mr P.J. Barrett (AM) - Auditor-General for Australia, presented at the Chartered Secretaries Australia, Discussion Luncheon, Canberra

Mr P.J. Barrett (AM) - Auditor-General for Australia, presentation to Macquarie University

The objective of the audit was to assess the effectiveness of AGD's arrangements for coordinating the development of the National Identity Security Strategy.

The ANAO's assessment was based on the following criteria:

• governance arrangements for the NISS;
• progress, to date, of the six NISS elements; and
• AGD's administrative arrangements for developing the NISS.

The objective of this audit was to form an opinion on the effectiveness of Internet security measures within the Commonwealth public sector. The second objective was to provide better practice guidance for managing an Internet connection. The audit covered a range of Commonwealth agencies which had established an Internet facility. It specifically addressed the following matters : Internet security policies; site management - including change control processes, virus prevention and detection strategies, and incident response plans; controls over access to the Internet site and to data sources connected to the site; and user education and training.

The objective of the audit was to assess the effectiveness of ASIO’s arrangements for providing timely and soundly based security assessments of individuals to client agencies.