Annual Report 2002–03 Volume I



Download 1.71 Mb.
Page47/58
Date19.10.2016
Size1.71 Mb.
#3403
1   ...   43   44   45   46   47   48   49   50   ...   58

Internal controls


In this section of the report, FaCS and the Child Support Agency (CSA) report on their risk management and ethical standards.

Internal audit

FaCS—Internal audit


FaCS finalised 10 internal audits and a spot audit in 2002–03. A panel of audit firms provided resources for conducting the audits. However, following the completion of the market testing process of FaCS’ internal audit and risk functions, a contract was signed with Ernst & Young on 16 April 2003 for them to be the primary provider of FaCS’ internal audit, risk management, business continuity planning and fraud control and investigation functions. Ernst & Young took over responsibility for all audits remaining from the 2002–03 audit work plan.

Work on the following audits was completed during 2002–03:

EDGE Project Management

IT Change Control—follow-up audit

Regulatory Compliance and Business Processes

Personal Support Programme

Business Planning, Risk Management and Fraud Control

IT Information Management

Management of Payroll, Leave and Flex time

IMPACT Upgrade

Budgetary Processes and Resource Management

Administration of Grants in FaCS

Spot audit—follow-up review of leave entitlements.

Other major activities included:

monitoring the implementation of recommendations by the ANAO, the Joint Committee of Public Accounts and Audit and FaCS’ internal audits

enhancements to the audit monitoring database to improve the process for following up progress on implementing audit recommendations.

In general, recent audit findings have indicated that the department’s processes continue to improve.

Child Support Agency—Internal audit


Audits finalised through the FaCS internal audit program examined:

business planning, risk management and fraud control

regulatory compliance and business processes

CITEC—payment distribution system

IT change control and information management.

In addition to the FaCS program, CSA conducts its own program of internal process audits. Finalised audits from this program examined:

making payment arrangements with clients

actions taken the first time a client defaults on their payments

staff advancement.

Risk management

FaCS—Risk management


FaCS continued to work towards a more integrated approach to risk management under the overall direction of the FaCS Executive Board. As part of this initiative, a review of the strategic risks facing the department was undertaken. In addition, increased focus was given to a business continuity framework and the establishment of a crisis response team. This team was activated for the first time in response to the January bushfires in Canberra.

Achievements included:

review of FaCS’ strategic risks by the FaCS Executive Board and implementation of a monitoring process

implementation of a business continuity planning framework

linkage of the management of FaCS’ strategic risks with the business planning process.

Child Support Agency—Risk management


This year CSA further incorporated the prediction and management of business risks into all aspects of the business. Some of the key achievements in this area were:

delivering risk assessment and risk management training, fully aligned with the FaCS risk management framework

mandating that all major change initiatives be run in accordance with a project management framework to improve transparency and accountability. The framework emphasises risk assessment and management throughout the life of each project.

conducting an assessment of CSA risks

establishing business continuity contingencies for IT and telephony systems

continuing to ensure that any new CSA accommodation is subject to a rigorous risk assessment process.


Protective security

FaCS—Protective security


FaCS has committed additional resources to protective security, which will allow it to strengthen areas of the FaCS protective security framework, especially staff awareness and training.

FaCS plans to integrate other aspects of security by including the IT security function with protective security, facilitating a more holistic approach to dealing with security issues.

During 2002–03, emphasis was given to the security clearance program, meaning that all staff requiring a security clearance will have at least begun the process by September 2003.

In 2002–03, FaCS had no significant security incidents.


Child Support Agency—Protective security


CSA has continued to assume a more autonomous role in security management and implementation. It has increased the security awareness of staff by recently implementing an e-learning security fraud and privacy package through its intranet.

Strong liaison points have been established between CSA and the police to help streamline the reporting of security incidents requiring police input. Through rigorous implementation of new policies and procedures, CSA has achieved greater compliance with the Commonwealth Protective Security Manual 2000.

The first internal quality audit of home-based work was completed and, on the whole, its recommendations have been fully implemented.

Management of ethical standards

FaCS—Management of ethical standards


The FaCS Strategic Statement 2002-2005 includes an ethics statement that sets out the behaviours staff should adopt in dealings with our ministers, partners, the people of Australia and our colleagues.

FaCS ensures that staff observe the Australian Public Service Code of Conduct and takes appropriate action if it is determined that a breach has occurred. FaCS staff are aware that breaches of the code will be taken seriously and may result in disciplinary action.

Staff commencing in FaCS are provided with a copy of the Australian Public Service Code of Conduct and the APS Values. The orientation and graduate training programs include information on ethics and values.

The FaCS Ethics Statement, Australian Public Service Code of Conduct and the APS Values are available to staff through the department’s intranet.

Six investigations were completed to determine if a breach of the code had occurred. All investigations found that a breach had occurred and action was taken against the officers concerned.

Results of investigations

Four investigations resulted in a fine for the employee concerned

One investigation resulted in counselling for the employee concerned

One investigation resulted in a reduction of one salary point for the employee concerned.

Causes of breaches of the code

Three breaches from inappropriate use of the Internet

One breach from improper use of Australian Government resources

Two breaches from improper use of Australian Government resources and failure to behave in a way that upholds APS values and the integrity and good reputation of the APS.

Child Support Agency—Management of ethical standards


All CSA staff undertake training about recognising and preventing fraud in the workplace. Online training for staff relating to fraud awareness and prevention is being developed.

CSA staff are provided with the Australian Public Service Code of Conduct on commencement and the values of this code, together with the CSA Core Values, are built into the entry-level training program.




Download 1.71 Mb.

Share with your friends:
1   ...   43   44   45   46   47   48   49   50   ...   58




The database is protected by copyright ©ininet.org 2024
send message

    Main page