Refine search Expand filter

Reports

Search filters applied: education, health AND compliance, internal controls and governance, management and administration, project management, risk AND in progress, planned .

In progress

Actions for Access to health services in custody

Access to health services in custody

Health
Internal controls and governance
Management and administration
Project management
Service delivery
Workforce and capability

The Justice Health and Forensic Mental Health Network (Justice Health) is responsible for providing health care to adults in custodial environments. In order to facilitate access to healthcare, Justice Health works with Corrective Services NSW to manage patient access to care in custodial environments along with access to healthcare in non-custodial environments such as hospitals or specialist community health services. Healthcare is also provided by pri

Planned

Actions for Compliance review: Cybersecurity

Compliance review: Cybersecurity

Community Services
Education
Environment
Finance
Health
Justice
Local Government
Planning
Premier and Cabinet
Industry
Transport
Treasury
Whole of Government
Cyber security
Information technology
Risk

In February 2019 the Department of Finance, Services and Innovation launched the NSW Cyber Security Policy to ensure all NSW Government Departments and Public Service Agencies are managing cyber security risks to their information and systems. The policy mandates a number of requirements that are a minimum that all agencies must implement. In addition agencies must assess their level of cyber maturity. This audit will examine whether agencies are complyi

Planned

Actions for Security of student information

Security of student information

Education
Compliance
Cyber security
Information technology
Internal controls and governance
Risk

Schools collect and maintain detailed student data, including sensitive personal information. Schools can also require or encourage students to use third party software applications for learning and other school related activities. This audit will examine how effectively schools ensure student data is secure – both within their own systems and when provided to third parties. This audit may also examine the effectiveness of information security governance

Planned

Actions for Security and privacy of patient information

Security and privacy of patient information

Health
Cyber security
Information technology
Internal controls and governance
Management and administration
Risk

Local Health Districts manage large volumes of private patient information and have their own systems for data management with differing approaches to data protection. Clinicians in busy hospital environments require timely access to data and systems to effectively treat patients. Increased accessibility may in turn increase the risk of poor data and system security practices. Recent experience in other jurisdictions has also demonstrated that operationa