Refine search Expand filter

Reports

In progress

Actions for Security and privacy of patient information

Security and privacy of patient information

Health
Cyber security
Information technology
Internal controls and governance
Management and administration
Risk

Local Health Districts manage large volumes of private patient information and have their own systems for data management with differing approaches to data protection. Clinicians in busy hospital environments require timely access to data and systems to effectively treat patients. Increased accessibility may in turn increase the risk of poor data and system security practices. Recent experience in other jurisdictions has also demonstrated that operationa

In progress

Actions for Building regulation–responding to combustible external cladding

Building regulation–responding to combustible external cladding

Finance
Compliance
Internal controls and governance
Management and administration
Project management
Regulation
Risk
Service delivery
Workforce and capability

In July 2017, following the Grenfell Tower fire in London the previous month, the NSW Government announced a 10-point fire safety reform plan intended to be Australia’s most comprehensive response’ to that disaster.   The NSW Government established an inter-departmental entity, the NSW Cladding Taskforce, to coordinate and roll out the reforms, including to identify and make safe any buildings in New South Wales that may be affected by combustible cladd

Planned

Actions for Compliance review: Cybersecurity

Compliance review: Cybersecurity

Community Services
Education
Environment
Finance
Health
Justice
Local Government
Planning
Premier and Cabinet
Industry
Transport
Treasury
Whole of Government
Cyber security
Information technology
Risk

In February 2019 the Department of Finance, Services and Innovation launched the NSW Cyber Security Policy to ensure all NSW Government Departments and Public Service Agencies are managing cyber security risks to their information and systems. The policy mandates a number of requirements that are a minimum that all agencies must implement. In addition agencies must assess their level of cyber maturity. This audit will examine whether agencies are complyi