Actions for Compliance review: Cybersecurity
In February 2019 the Department of Finance, Services and Innovation launched the NSW Cyber Security Policy to ensure all NSW Government Departments and Public Service Agencies are managing cyber security risks to their information and systems. The policy mandates a number of requirements that are a minimum that all agencies must implement. In addition agencies must assess their level of cyber maturity. This audit will examine whether agencies are complyi
Actions for Advice on major decisions: redevelopment of the Sydney Football Stadium
The NSW Government makes decisions that involve the spending of significant sums, and that have substantial impacts on citizens. This audit will focus on the advice provided for the redevelopment of the Sydney Football Stadium. This audit may examine the adequacy of planning and risk management approaches and whether these: were informed by appropriate and robust departmental advice complied with relevant procurement and assurance frameworks.
Actions for Security and privacy of patient information
Local Health Districts manage large volumes of private patient information and have their own systems for data management with differing approaches to data protection. Clinicians in busy hospital environments require timely access to data and systems to effectively treat patients. Increased accessibility may in turn increase the risk of poor data and system security practices. Recent experience in other jurisdictions has also demonstrated that operationa