Refine search Expand filter

Reports

Published

Actions for Compliance with the NSW Cyber Security Policy

Compliance with the NSW Cyber Security Policy

Whole of Government
Compliance
Cyber security
Information technology

This audit assessed nine agencies’ compliance with the NSW Cyber Security Policy (CSP) including whether, during the year to 30 June 2020, the participating agencies: met their reporting obligations under the CSP reported accurate self-assessments of their level of maturity implementing the CSP’s requirements including the Australian Cyber Security Centre’s (ACSC) Essential 8. What we found Key elements to strengthen cyber se

Published

Actions for Managing cyber risks

Managing cyber risks

Whole of Government
Transport
Cyber security
Information technology
Internal controls and governance
Procurement
Risk

This audit assessed how effectively Transport for NSW (TfNSW) and Sydney Trains identify and manage their cyber security risks. The NSW Cyber Security Policy (CSP) sets out 25 mandatory requirements for agencies, including implementing the Australian Cyber Security Centre’s Essential 8 strategies to mitigate cyber security incidents, and identifying the agency’s most vital systems, their ‘crown jewels’.  The audited agencies h

Published

Actions for Governance and internal controls over local infrastructure contributions

Governance and internal controls over local infrastructure contributions

Local Government
Planning
Environment
Compliance
Financial reporting
Infrastructure
Internal controls and governance
Management and administration
Service delivery

The Auditor-General for New South Wales, Margaret Crawford, released a report today on how well four councils managed their local infrastructure contributions during the 2017-18 and 2018-19 financial years.  Local infrastructure contributions, also known as developer contributions, are collected from developers to pay for local infrastructure such as drainage, local roads, open space and community facilities. Controls over local infrastructure contribut

Published

Actions for Destination NSW's support for major events

Destination NSW's support for major events

Treasury
Financial reporting
Management and administration
Procurement
Project management
Service delivery

This report focuses on whether Destination NSW (DNSW) can demonstrate that its support for major events achieves value for money. The audit found that DNSW’s processes for assessing and evaluating the major events it funds are mostly effective, but its public reporting does not provide enough transparency. DNSW provides clear information to event organisers seeking funding and has a comprehensive methodology for conducting detailed event assessments. H

Published

Actions for Integrity of data in the Births, Deaths and Marriages Register

Integrity of data in the Births, Deaths and Marriages Register

Justice
Premier and Cabinet
Whole of Government
Cyber security
Fraud
Information technology
Internal controls and governance
Management and administration

This report outlines whether the Department of Customer Service (the department) has effective controls in place to ensure the integrity of data in the Births, Deaths and Marriages Register (the register), and to prevent unauthorised access and misuse. The audit found that the department has processes in place to ensure that the information entered in the register is accurate and that any changes to it are validated. Although there are controls in place

Published

Actions for Managing risks in the NSW public sector: risk culture and capability

Managing risks in the NSW public sector: risk culture and capability

Finance
Health
Justice
Treasury
Internal controls and governance
Management and administration
Risk
Workforce and capability

The Ministry of Health, NSW Fair Trading, NSW Police Force, and NSW Treasury Corporation are taking steps to strengthen their risk culture, according to a report released today by the Auditor-General, Margaret Crawford. 'Senior management communicates the importance of managing risk to their staff, and there are many examples of risk management being integrated into daily activities', the Auditor-General said. We did find that three of the agencies we e

Published

Actions for Implementation of the NSW Government’s program evaluation initiative

Implementation of the NSW Government’s program evaluation initiative

Industry
Justice
Planning
Premier and Cabinet
Treasury
Environment
Financial reporting
Internal controls and governance
Management and administration
Risk
Service delivery
Shared services and collaboration
Workforce and capability

The NSW Government’s ‘program evaluation initiative’, introduced to assess whether service delivery programs achieve expected outcomes and value for money, is largely ineffective according to a report released today by NSW Auditor-General, Margaret Crawford. Government services, in areas such as public order and safety, health and education, are delivered by agencies through a variety of programs. In 2016–17, the NSW Government estimates that it will sp

Published

Actions for Public sector management reforms

Public sector management reforms

Finance
Industry
Premier and Cabinet
Planning
Whole of Government
Environment
Management and administration
Workforce and capability

The Public Service Commission is making good progress with leading the implementation of public sector management reforms, according to a report released today by the Acting New South Wales Auditor-General, Tony Whitfield. 'The Commission developed a sound evidence base for the reforms and gained wide public sector support by engaging with agency heads and using public sector working groups to develop options', said the Acting Auditor-General. 'They dev

Published

Actions for Sick Leave

Sick Leave

Premier and Cabinet
Whole of Government
Management and administration
Workforce and capability

NSW public sector sick leave is higher than other States. The NSW public sector has the highest reported public sector sick leave in Australia. Public sector efforts to reduce sick leave over the last five years has seen a fall of a quarter of a day since 2004-05, less than its target of one day. On average, public sector workers take just over eight days sick leave annually. Recent surveys of public and private sector organisations show that sick leave

Published

Actions for Electronic Information Security

Electronic Information Security

Whole of Government
Cyber security
Internal controls and governance
Risk

The Government is not able to provide assurance that it is safeguarding its holdings of sensitive personal information because its policy has not been properly implemented. This is likely to remain the case until there are clear, mandatory, minimum standards that agencies sign up to, and scrutiny of performance against these standards is strengthened.   Parliamentary reference - Report number #207 - released 20 October 2010