Reports
Actions for 2016 - An overview
2016 - An overview
This report focuses on key observations and findings from 2016 audits and highlights key areas of focus for financial and performance audits in 2017.
Financial reporting | |
Observation | Conclusion |
Only one qualified audit opinion was issued on the 2015–16 financial statements of NSW public sector agencies, compared to two in 2014–15. | The quality of financial reporting continued to improve across the NSW public sector. |
More 2015–16 financial statements and audit opinions were signed within three months of the year end. | Timely financial reporting was facilitated by more agencies resolving significant accounting issues early, completing asset valuations on time and compiling sufficient evidence to support financial statement balances. |
NSW Treasury’s early close procedures in 2015–16 were again successful in improving the quality and timeliness of financial reporting, largely facilitated by the early resolution of accounting issues. For 2016–17, NSW Treasury has narrowed the scope of mandatory early close procedures. |
The narrowed scope of mandatory early close procedures may diminish the good performance in ensuring the quality and timeliness of financial reporting achieved in recent years. To mitigate this risk, NSW Treasury has mandated that agencies perform non-financial asset valuations and prepare proforma financial statements in their early close procedures. It also encourages them to continue with the good practices embedded in recent years. |
Although most agencies complied with NSW Treasury’s early close asset revaluation procedures we identified areas where they can improve. | Asset revaluations need to commence early enough to ensure all assets are identified and the results are analysed, recorded and reflected accurately in the early close financial statements. |
Number of misstatements | |||||
Year ended 30 June | 2015-16 | 2014-15 | 2013-14 | 2012-13 | 2011-12 |
Total reported misstatements | 298 | 396 | 459 | 661 | 1,077 |
All material misstatements identified by agencies and audit teams were corrected before the financial statements and audit opinions were signed. A material misstatement relates to an incorrect amount, classification, presentation or disclosure in the financial statements that could reasonably be expected to influence the economic decisions of users.
Significant matters reported to the portfolio Minister, Treasurer and Agency Head
In 2015–16, we reported the following significant matters to the portfolio Minister, Treasurer and agency head in our Statutory Audit Reports:
Appropriate financial controls help ensure the efficient and effective use of resources and the implementation and administration of agency policies. They are essential for quality and timely decision making.
In 2015–16, our audit teams made the following key observations on the financial controls of NSW public sector agencies.
Financial controls | |
Observation | Conclusion |
More needs to be done to implement audit recommendations on a timely basis. We found 212 internal control issues identified in previous audits had not been adequately addressed by 30 June 2016. |
Delays in implementing audit recommendations can impact the quality of financial information and the effectiveness of decision making. Agencies need to ensure they have action plans, timeframes and assigned responsibilities to address recommendations in a timely manner. |
Agencies continue to face challenges managing information security. Most information technology issues we identified related to poor IT user administration in areas like password controls and inappropriate access. | Agencies should review the design and effectiveness of information security controls to ensure data is adequately protected. |
We found shared service provider agreements did not always adequately address information security requirements. |
Where agencies use shared service providers they should consider whether the service level arrangements adequately address information security. |
Thirteen of 108 agencies required to attest to having a minimum set of information security controls did not do so in their 2015 annual reports. | The 'NSW Government Digital Information Security Policy' recognises the growing need for effective information security. With cyber security threats continuing to increase as digital services expand we plan to look at cyber security as part of our 2017–18 performance audit program. |
We identified instances where service level agreements with shared service providers were outdated, signed too late or did not exist. | Corporate and shared service arrangements are more effective when service level arrangements are negotiated and signed in time, clearly detail rights and responsibilities and include meaningful KPIs, fee arrangements and dispute resolution processes. |
Internal controls at GovConnect, the private sector provider of transactional and information technology services to many NSW public sector agencies were ineffective in 2015–16. We found mitigating actions taken to manage transition risks from ServiceFirst to GovConnect were ineffective in ensuring effective control over client transactions and data. | The Department of Finance, Services and Innovation should ensure GovConnect addresses the control deficiencies. It should also examine the breakdowns in the transition of the shared service arrangements and apply the learnings to other services being transitioned to the private sector. |
Maintenance backlogs exist in several NSW public sector agencies, including Roads and Maritime Services, Sydney Trains, NSW Health, the Department of Education and the Department of Justice. | To address backlog maintenance it is important for agencies to have asset lifecycle planning strategies that ensure newly built and existing assets are funded and maintained to a desired service level. |
Actions for Transport 2016
Transport 2016
Financial reporting within the Transport Cluster continues to improve with reported misstatements down 96 per cent since 2011-12 to just three in 2015-16, according to a report released today by the NSW Auditor-General, Margaret Crawford.
Actions for CBD and South East Light Rail Project
CBD and South East Light Rail Project
Transport for NSW did not effectively plan and procure the CBD and South East Light Rail (CSELR) project to achieve best value for money according to a report released today by NSW Auditor-General, Margaret Crawford.
Transport for NSW is on track to deliver the project, but it will come at a higher cost with lower benefits than in the approved business case.
Parliamentary reference - Report number #278 - released 30 November 2016
Actions for Fraud Survey
Fraud Survey
In a report released today, the NSW Auditor-General, Margaret Crawford provides a snapshot of reported fraud in the NSW public sector and an analysis of NSW Government agencies’ fraud controls based on a survey of 102 agencies.
Actions for Sydney metropolitan bus contracts
Sydney metropolitan bus contracts
On 9 September 2015, the Acting Auditor-General of New South Wales, Tony Whitfield, released a report on Sydney Metropolitan Bus Service Contracts.
All scheduled bus services in the Sydney metropolitan area are provided under contracts with the public and private operators. The contracts allow Transport for NSW (TfNSW) to determine what bus services are provided and to whom. This audit assessed the effectiveness of TfNSW’s design and management of these contracts.
Bus services provided under the Sydney Metropolitan Bus Service Contracts have largely been effective and efficient. Operators are mostly meeting their key performance indicators. Customer satisfaction is better than under the previous contracts and improving, patronage is increasing, and the unit costs of providing services are now lower than under the previous contracts.
However, punctuality remains a problem. Private operators are mostly starting their trips on time, but rarely meeting their mid and end-of-trip targets. State Transit Authority’s (STA) punctuality is improving but is worse than private operators, and other areas of performance are generally below private operators.
The current situation is a substantial improvement over what we found in our 2010 audit on the previous contracts.
Parliamentary reference - Report number #258 - released 9 September 2015
Actions for Identifying productivity in the public sector
Identifying productivity in the public sector
This report examines selected areas of government activity to see if sufficient information was available to identify and assess changes in productivity. The areas examined were primary and secondary school public education, acute inpatient care in NSW public hospitals, CityRail, the NSW Police Force, and the NSW Local Court.
Productivity is commonly defined as the amount of output per unit of input.
Parliamentary reference - Report number #256 - released 16 July 2015
Actions for Implementing performance audit recommendations
Implementing performance audit recommendations
NSW Government agencies have sound processes for implementing performance audit recommendations in Auditor-General’s Reports to Parliament. There are many cases of good practice. For example, some agencies formed a steering committee and developed a detailed plan to implement recommendations. Another incorporated the implementation of recommendations into both its business plan and the work plans of individual officers who were managing projects. Most agencies also used their Audit and Risk Committees to monitor recommendations.
We found some cases where agencies can improve how they coordinate actions to address recommendations. Most agencies were not revisiting these actions to determine whether they remain appropriate.
Parliamentary reference - Report number #254 - released 24 June 2015
Actions for Large construction projects
Large construction projects
The independent assurance given to the NSW Government and sponsor agencies on the viability of large capital projects throughout their lifecycle is inadequate. Government policy is regularly not followed and not properly communicated to those responsible for implementing such policy.
This audit sought to test the effectiveness of the NSW capital project assurance system - which includes gateway reviews and reporting - but significant levels of non-compliance identified in our case studies prevented this. The NSW Commission of Audit also identified this issue in 2012. Gateway reviews are conducted by independent reviewers at key stages of a project’s life cycle and provide an independent assessment on a project’s readiness to proceed to the next stage.
Parliamentary reference - Report number #252 - released 7 May 2015
Actions for Areas of focus from 2014
Areas of focus from 2014
Actions for Security of critical IT infrastructure
Security of critical IT infrastructure
Roads and Maritime Services and Transport for NSW have deployed many controls to protect traffic management systems but these would have been only partially effective in detecting and preventing incidents and unlikely to support a timely response. There was a potential for unauthorised access to sensitive information and systems that could have disrupted traffic.
Until Roads and Maritime Services’ IT disaster recovery site is fully commissioned, a disaster involving the main data centre is likely to lead to higher congestion in the short-term as traffic controllers would be operating on a regional basis without the benefit of the Traffic Management Centre.
Parliamentary reference - Report number #248 - released 21 January 2015