Actions for Managing climate risks to assets and services
What the report is about This report assessed how effectively the Department of Planning, Industry and Environment (DPIE) and NSW Treasury have supported state agencies to manage climate risks to their assets and services. Climate risks that can impact on state agencies' assets and services include flooding, bushfires, and extreme temperatures. Impacts can include damage to transport, communications and energy infrastructure, increases in hospital admi
Actions for Internal Controls and Governance 2021
This report will bring together the findings and recommendations from our 2020–21 financial audits that relate to the internal controls and governance of the largest NSW Government agencies. In 2021–22, this report will cover: Internal control trends Information technology controls Cyber security planning and governance arrangements Masterfile management Managing conflicts of interests Tracking and monitoring of the implementation of recommendation
Actions for Members Entitlements 2021
This report will analyse whether Members of NSW Parliament complied with certain requirements outlined in the Parliamentary Remuneration Tribunal’s Determination.
Actions for Education 2021
This report will analyse the results of the 2020–21 financial statement audits of the education cluster and comment on the quality and timeliness of financial statements, key accounting issues, and high risk observations from our audits.
Actions for Health 2021
This report will analyse the results of the 2020–21 financial statement audits of the health cluster and comment on the quality and timeliness of financial statements, key accounting issues, and high risk observations from our audits.
Actions for Investment in regional development
In 2017, the NSW Government announced a Regional Development Framework which provides a scaffold for better coordination, decision making and effort on the ground. The NSW Government recognised the need to be more strategic and better coordinated if it is to make a difference, particularly in addressing some of the serious issues facing regional NSW such as pockets of youth unemployment, social disadvantage, changing economic opportunities and increased
Actions for Coordination of emergency responses
The 2019–20 bushfire emergencies, and the COVID-19 pandemic have had a significant impact on the people and public sector of New South Wales. The scale of government responses to both events has also been significant and has encompassed a wide range of activities, service delivery, governance and policy. Significant resources have been directed for emergency responses, and in assisting rebuilding and economic recovery. Some systems and processes have cha
Actions for Security and privacy of patient information
Local Health Districts manage large volumes of private patient information and have their own systems for data management with differing approaches to data protection. Clinicians in busy hospital environments require timely access to data and systems to effectively treat patients. Increased accessibility may in turn increase the risk of poor data and system security practices. Recent experience in other jurisdictions has also demonstrated that operationa
Actions for Compliance review: Cybersecurity
In February 2019 the Department of Finance, Services and Innovation launched the NSW Cyber Security Policy to ensure all NSW Government Departments and Public Service Agencies are managing cyber security risks to their information and systems. The policy mandates a number of requirements that are a minimum that all agencies must implement. In addition agencies must assess their level of cyber maturity. This audit will examine whether agencies are complyi
Actions for Managing cyber risks
What the report is about This audit assessed how effectively Transport for NSW (TfNSW) and Sydney Trains identify and manage their cyber security risks. The NSW Cyber Security Policy (CSP) sets out 25 mandatory requirements for agencies, including implementing the Australian Cyber Security Centre’s Essential 8 strategies to mitigate cyber security incidents, and identifying the agency’s most vital systems, their ‘crown jewels’. The audited agencies h