What this report is about

Workers compensation schemes in NSW provide compulsory workplace injury insurance. The effective management of workers compensation is important to ensure injured workers are provided with prompt support to ensure timely, safe and sustainable return to work.

Insurance and Care NSW (icare) manages workers compensation insurance. The State Insurance Regulatory Authority (SIRA) regulates workers compensation schemes. NSW Treasury has a stewardship role but does not directly manage the schemes.

This audit assessed the effectiveness and economy of icare’s management of workers compensation claims, and the effectiveness of SIRA’s oversight of workers compensation claims.

Findings

icare is implementing major reforms to its approach to workers compensation claims management - but it is yet to demonstrate if these changes are the most effective or economical way to improve outcomes.

icare’s planning and assurance processes for its reforms have not adequately assessed existing claims models or analysed other reform options.

icare's activities have not focused enough on its core responsibilities of improving return to work and maintaining financial sustainability.

SIRA has improved the effectiveness of its workers compensation regulatory activities in recent years. Prior to 2019, SIRA was mostly focussed on developing regulatory frameworks and was less active in its supervision of workers compensation schemes.

NSW Treasury's role in relation to workers compensation has been unclear, which has limited its support for performance improvements.

Recommendations

icare should:

• Ensure that its annual Statement of Business Intent clearly sets out its approach to achieving its legislative objectives.
• Monitor and evaluate its workers compensation scheme reforms.
• Develop a quality assurance program to ensure insurance claim payments are accurate.

NSW Treasury should:

• Work with relevant agencies to improve public sector workers compensation scheme outcomes.
• Engage with the icare Board to ensure icare's management is in line with relevant NSW Treasury policies.

SIRA should:

• Address identified gaps in its fraud investigation.
• Develop a co-ordinated research strategy.

Read the PDF report

Parliamentary reference - Report number #393 - released 2 April 2024

What this report is about

Results of the local government sector financial statement audits for the year ended 30 June 2023.

Findings

Unqualified audit opinions were issued for 85 councils, eight county councils and 12 joint organisations.

Qualified audit opinions were issued for 36 councils due to non-recognition of rural firefighting equipment vested under section 119(2) of the Rural Fires Act 1997.

The audits of seven councils, one county council and one joint organisation remain in progress at the date of this report due to significant accounting issues.

Fifty councils, county councils and joint organisations missed the statutory deadline of submitting their financial statements to the Office of Local Government, within the Department of Planning, Housing and Infrastructure, by 31 October.

Audit management letters included 1,131 findings with 40% being repeat findings and 91 findings being high-risk. Governance, asset management and information technology continue to represent 65% of the key areas for improvement.

Fifty councils do not have basic governance and internal controls to manage cyber security.

Recommendations

To improve quality and timeliness of financial reporting, councils should:

• adopt early financial reporting procedures, including asset valuations
• ensure integrity and completeness of asset source records
• perform procedures to confirm completeness, accuracy and condition of vested rural firefighting equipment.

To improve internal controls, councils should:

• track progress of implementing audit recommendations, and prioritise high-risk repeat issues
• continue to focus on cyber security governance and controls.

Pursuant to the Local Government Act 1993 I am pleased to present my Auditor-General’s report on Local Government 2023. My report provides the results of the 2022–23 financial audits of 121 councils, eight county councils and 12 joint organisations. It also includes the results of the 2021–22 audits for two councils and two joint organisations which were completed after tabling of the Auditor-General’s report on Local Government 2022. The 2022–23 audits for eight councils, one county council and one joint organisation remain in progress due to significant accounting issues.

This will be my last consolidated report on local councils in NSW as my term as Auditor-General ends in April. Without a doubt, the change in mandate to make me the auditor of the local government sector has been the biggest challenge in my term. Challenging for councils as they adjust to consistent audit arrangements and for the staff of the Audit Office of NSW as they learn about the issues facing NSW councils.

The change in mandate aimed to improve the quality of financial management and reporting across the sector. This will take time. But this report does show some ‘green shoots’ with more councils submitting financial reports to the Office of Local Government by 31 October and more councils having Audit, Risk and Improvement Committees. 

I also want to acknowledge that councils face significant challenges responding to and recovering from emergency events whilst cost and resourcing pressures have been persistent.

The findings from our audits identify opportunities to further improve timeliness and quality of financial reporting and integrity of systems and processes. The recommendations in this report are also intended to improve financial management and reporting capability, encourage sound governance, and boost cyber resilience.

Margaret Crawford PSM
Auditor-General for New South Wales

Financial reporting is an important element of good governance. Confidence in and transparency of public sector decision-making are enhanced when financial reporting is accurate and timely.

This chapter outlines audit observations related to the financial reporting audit results of councils, county councils and joint organisations.

A strong system of internal controls enables councils to operate effectively and efficiently, produce reliable financial reports, comply with laws and regulations, and support ethical government.

This chapter outlines the overall trends in governance and internal controls across councils, county councils and joint organisations in 2022–23.

Financial audits focus on key governance matters and internal controls supporting the preparation of councils’ financial statements. Breakdowns and weaknesses in internal controls increase the risk of fraud and error. Deficiencies in internal controls, matters of governance interest and unresolved issues are reported to management and those charged with governance through audit management letters. These letters include our observations with risk ratings, related implications, and recommendations.

Appendix one – Response from the Office of Local Government within the Department of Planning, Housing and Infrastructure

Appendix two – NSW Crown Solicitor’s advice

Appendix three – Status of previous recommendations

Appendix four – Status of audits

Appendix five – Councils received qualified audit opinions for non-recognition of rural firefighting equipment

© Copyright reserved by the Audit Office of New South Wales. All rights reserved. No part of this publication may be reproduced without prior consent of the Audit Office of New South Wales. The Audit Office does not accept responsibility for loss or damage suffered by any person acting on or refraining from action as a result of any of this material.

What this report is about

NSW local councils provide a wide range of essential services and infrastructure to their communities and are increasingly reliant on digital technologies.

Councils need to manage cyber security risks to ensure their information, data and systems are appropriately safeguarded. Councils also need to be prepared to detect, respond and recover when a cyber security incident occurs.

The audit assessed how effectively three selected councils identified and managed cyber security risks.

The audit also included the Department of Planning, Housing and Infrastructure (Office of Local Government) and Department of Customer Service (Cyber Security NSW), due to their roles in providing guidance and support to local councils.

Audit findings

The audit found that the selected councils are not effectively identifying and managing cyber security risks. Each of the councils undertook activities to improve their cyber security during the audit period, but this audit found significant gaps in their cyber security risk management and cyber security processes.

Such gaps result in unmitigated risks to the security of information and assets which, if compromised, could impact their local communities, service delivery and public infrastructure.

Cyber Security NSW and the Office of Local Government recommend that councils adopt requirements in the Cyber Security Guidelines for Local Government, but could do more to monitor whether the Guidelines are enabling better cyber security risk management in the sector.

Audit recommendations

In summary, the councils should:

• integrate assessment and monitoring of cyber security risks into corporate governance processes
• self-assess their performance against Cyber Security NSW's guidelines for local government
• develop and implement a risk-based cyber security improvement plan and program of activities
• develop, implement and test a cyber incident response plan.

Cyber Security NSW and the Office of Local Government should regularly consult on cyber security risks facing local government, and review the effectiveness of guidelines and related resources for the sector.

While this report focuses on the performance of the selected councils, the findings and recommendations should be considered by all councils to better understand their risks and challenges relevant to managing cyber security risks.

Local councils in New South Wales (NSW) provide a wide range of essential services and infrastructure to their communities and are increasingly reliant on digital technologies for this.

Councils use various information systems and software to manage significant amounts of information and data relevant to their corporate functions, infrastructure and service delivery. This may include sensitive information about residents, customers and staff.

Audit Office of New South Wales reports to Parliament have highlighted gaps in councils' cyber security risk management approaches since 2020. The Local Government 2023 report, tabled in March 2024, found that 50 councils were yet to implement cyber security governance frameworks and related internal controls.

The threat from cyber security incidents continues to rise. Such incidents can harm local government service delivery and may include the theft of information, denial of access to critical technology, or even the hijacking of systems for profit or malicious intent.

It is important that councils are effectively identifying and managing cyber security risks to:

• protect their information, data and systems
• be prepared to detect, respond to and recover from cyber security incidents 
• ensure confidence in the services they are providing for their communities.

This report outlines important findings and recommendations from a performance audit of three councils: City of Parramatta Council, Singleton Council and Warrumbungle Shire Council. This audit report has deidentified findings for each council, but the specific findings have been directly shared with each council to enable them to remediate and improve cyber safeguards. The findings and recommendations in this report are likely to be relevant to most local councils in NSW and councils are encouraged to ensure they have sufficient cyber safeguards.

This audit assessed how effectively the selected councils identified and managed cyber security risks. The audit considered whether the councils:

• effectively identify and plan for cyber security risks
• have controls in place to effectively manage identified cyber security risks
• have processes in place to detect, respond to, and recover from cyber security incidents.

This audit also included the Department of Customer Service and the Office of Local Government (OLG) within the Department of Planning and Environment (DPE) due to their roles in providing guidance and support to local government.¹

Cyber Security NSW, part of the Department of Customer Service, supports local councils to improve their cyber resilience through a range of services and guidance, including the Cyber Security Guidelines – Local Government issued in December 2022.

The OLG is responsible for strengthening the sustainability, performance, integrity, transparency and accountability of the local government sector.

¹ The OLG was part of DPE up to 1 January 2024, when DPE was abolished and the OLG became part of the Department of Planning, Housing and Infrastructure (DPHI).

Local councils in New South Wales (NSW) provide a wide range of essential services and infrastructure to their communities. In doing so, councils use a range of information technology (IT) systems, assets, and digital services.

This audit follows several audit reports by the Audit Office of New South Wales that have considered how effectively NSW Government entities, including local councils have managed cyber security risks (see Appendix three).

The Audit Office of New South Wales has reported on how councils have managed cyber security risks since 2020. In the Local Government 2023 report, tabled in March 2024, gaps in cyber security frameworks and related internal controls were reported in 50 councils.

This chapter includes a summary of thematic key findings for the selected councils.

Cyber Security NSW is responsible for supporting local councils to improve their cyber resilience through a range of services and guidance and published its Local Government Engagement Plan in 2023 (discussed below).

The Office of Local Government (OLG) is responsible for strengthening the sustainability, performance, integrity, transparency and accountability of the local government sector. It does this through a range of activities including monitoring sector-wide and council-specific risks, issuing guidance, engaging with councils to build capacity and supporting the Minister for Local Government’s discretionary intervention powers.

Appendix one - Response from entities Cyber security in LG

Appendix two - Glossary-  Cyber security in local government

Appendix three – Overview of Audit Office of New South Wales reports that consider cyber security - Cyber security in local government

Appendix four – Cyber Security Guidelines – Local Government foundational requirements- Cyber security in local government

Appendix five – About the audit- Cyber security in local government

Appendix six – Performance auditing -Cyber security in local government

Copyright notice

© Copyright reserved by the Audit Office of New South Wales. All rights reserved. No part of this publication may be reproduced without prior consent of the Audit Office of New South Wales. The Audit Office does not accept responsibility for loss or damage suffered by any person acting on or refraining from action as a result of any of this material.

Parliamentary reference - Report number #392- released 26 March 2024

What this report is about

In this report, we present findings and recommendations relevant to regulation from selected reports between 2018 and 2024.

This analysis includes performance audits, compliance audits and the outcomes of financial audits.

Effective regulation is necessary to ensure compliance with the law as well as to promote positive social and economic outcomes and minimise risks with certain activities.

The report is a resource for public sector leaders. It provides insights into the challenges and opportunities for more effective regulation.

Audit findings

The analysis of findings and recommendations is structured around four key themes related to effective regulation:

• governance and accountability
• processes and procedures
• data and information management
• support and guidance.

The report draws from this analysis to present insights for agencies to promote effective regulation. It also includes relevant examples from recent audit reports.

In this report, we also draw out insights for agencies that provide a public sector stewardship role.

The report highlights the need for agencies to communicate a clear regulatory approach. It also emphasises the need to have a consistent regulatory approach, supported by robust information about risks and accompanied with timely and proportionate responses.

The report highlights the need to provide relevant support to regulated parties to facilitate compliance and the importance of transparency through reporting of meaningful regulatory information.

Image

I am pleased to present this report, Regulation insights. This report highlights themes and generates insights about effective regulation from the last six years of audit.

Effective regulation is necessary to ensure compliance with the law. Effective regulation also promotes social, economic, and environmental outcomes, and minimises risks or negative impacts associated with certain activities. But regulation can be challenging and costly for governments to implement. It can also involve costs and impact on the regulated parties, including other public sector and private entities, and individuals. As such, effective regulation needs to be administered efficiently, and with integrity.

Having a clearly articulated and communicated regulatory approach is essential to achieving this outcome, particularly when this promotes voluntary compliance and sets performance standards that are informed by community expectations. A consistent approach to exercising regulatory powers is important: it should be supported by robust information about regulatory risks and issues, and accompanied with timely, proportionate responses. Providing relevant support to the regulated parties and coordinating activities to facilitate compliance and performance can generate efficiencies.

Finally, transparency matters. It matters so that government has oversight of and can be held accountable for its leadership of public sector compliance, and in regulating the activities of third parties. Transparency also matters because it can provide insights into the effective exercise of government power. To achieve this, meaningful regulatory information needs to be reported.

While these issues are most pertinent for government agencies that exercise traditional regulatory functions, they are also relevant to lead government agencies that provide a stewardship role in promoting compliance and performance by other government agencies in relation to particular areas of risk.

Over the past six years, our audit work has found many common and repeat performance gaps, creating risks, inefficiencies, and limiting outcomes of regulatory activities. In considering these gaps, this report provides public sector leaders with insights into the challenges and opportunities they may encounter when aiming for more effective regulation, including the good governance of regulatory activities. This includes insights for lead agencies that provide a public sector stewardship role. Through applying these insights and maximising regulatory effectiveness, unintended impacts on the people and sectors government serves and protects can be avoided or at the very least minimised.

Margaret Crawford PSM
Auditor-General for NSW

This report brings together key findings and recommendations relevant to regulation from selected performance and compliance audits between 2018 and early 2024 (19 in total), and from two reports that summarise results of financial audits during the same period. It aims to provide insights into the challenges and opportunities the public sector may encounter when aiming to enhance regulatory effectiveness.

The report is structured in two sections, each setting out insights from relevant audits and providing summaries as illustrative examples.

Section 3 is focused on insights from audits of agencies that administer regulatory powers and functions over other entities or activities (typically known as 'regulators'). The powers and functions of regulators are defined in law, and often relate to issuing approvals (e.g., licensing) for certain activities, and/or monitoring allowable activities within certain limits. Regulators often have compliance and enforcement powers that can be exercised in particular circumstances, such as when a regulated entity has not complied with relevant requirements.

Agencies may be primarily established as regulators or perform regulatory activities alongside other functions. Depending on the context, the regulated activity may relate to other state agencies, local government entities, non-government entities or individuals.

Section 4 summarises insights from a selection of audits of agencies that provide a stewardship role in promoting compliance by and performance of other state agencies and local government entities in relation to specific regulations or policies. These policies may or may not be mandatory and, unlike a more traditional regulator, the coordinating agency may not have enforcement powers to ensure compliance.

These policies, and accompanying guidelines and frameworks, are typically issued by ‘central agencies’ such as the Premier's Department that have a public sector stewardship role. They can also be issued by agencies with a leadership role in particular policy areas ('lead agencies'). While individual agencies and local government entities implementing these policies are responsible for their own compliance and performance, lead and central agencies have an oversight role including by promoting accountability and coordinating activities towards achieving compliance and performance outcomes across the public sector.

Readers are encouraged to view the full reports for further information. Links to versions published on our website are provided throughout this document, and a full list is in Appendix one. An overview of the rationale for selecting these audits and the approach to developing this report is in Appendix two.

The status of agencies' responses to audit recommendations

Findings from the audits referred to in this report were current at the time each respective report was published. In many cases, agencies accepted audit recommendations, as reflected in the letters from agency heads that are included in the appendix of each audit report.

The Public Accounts Committee of the NSW Parliament has a role in reporting on and ensuring that agencies respond appropriately to audit recommendations. Readers are encouraged to review the Public Accounts Committee's inquiries on agencies' implementation of audit recommendations, which can be found on the Committee's website.

Appendix one – Included reports 2018–2024 Regulation insights

Appendix two – About this report- Regulation insights

What this report is about

WestInvest is a $5 billion funding program announced in September 2021 to provide ‘local infrastructure to help communities hit hard by COVID-19’ in 15 local government areas (LGAs) selected by the government. It was divided into three parts: $3 billion for NSW government agency projects; $1.6 billion for competitive grants to councils and community groups; and $400 million for non-competitive grants to councils.

Following the change of government at the 2023 election, the program was renamed the Western Sydney Infrastructure Grants Program. Funding decisions made for the community and local government grants were retained, but multiple funding decisions for the NSW government projects were changed.

The audit objective was to assess the integrity of the design and implementation of the program and the award of program funding.

Findings

The design of the program lacked integrity because it was not informed by robust research or analysis to justify the commitment of public money to a program of this scale.

The then government did not have sufficient regard to the implications for the state's credit rating. A risk to the credit rating arose because the government may have been perceived to be using proceeds from major asset sales to fund new expenditure, rather than pay down its debt.

Decisions about program design were made by the then Treasurer's office without consultation with affected communities. The rationale for these decisions was not documented or made public.

For the NSW government projects, funding allocations did not follow advice from departments. Many funded projects did not meet the objectives of the program.

The two other rounds of the program were administered effectively, except for some gaps in documentation and quality assurance. The program guidelines did not require an equitable or needs-based distribution of funding across LGAs and there was a significant imbalance in funding between the 15 LGAs.

Recommendations

Our recommendations for the administration of future funding programs included:

• considering whether competitive grants are the best way to achieve the program's purpose
• completing program design and guidelines before announcements
• ensuring adequate quality assurance.

We also recommended that when providing advice for submissions by Ministers to Cabinet, agencies should ensure that departmental advice is clearly identified and is distinct from other advice or political considerations. 

WestInvest is a $5 billion funding program that was announced in September 2021. The program was established with the stated aim of building ‘new and improved facilities and local infrastructure to help communities hit hard by COVID-19’.

WestInvest was divided into three funding streams:

• $3 billion NSW government projects round open to NSW government agencies
• $1.6 billion community projects competitive round administered as a competitive grant program that was open to local councils, non-government organisations, Local Aboriginal Land Councils, and educational institutions in the 15 eligible LGAs
• $400 million local government projects round administered as a non-competitive grant round only open to the 15 eligible councils, with each council receiving a pre-determined share of the $400 million.

The WestInvest program was administered by NSW Treasury and the Premier's Department (previously the Department of Premier and Cabinet). Decisions about funding allocations were made by the former Treasurer in his role as the statutory decision-maker and announced by the former government in the lead up to the March 2023 NSW State election, but no funding was paid prior to the election.

Following the change of government, the funding decisions for the community projects competitive round and local government projects round were confirmed and negotiation of funding deeds commenced. The current government reviewed the decisions for the NSW government projects round and made changes to multiple decisions as part of the 2023–24 NSW Budget process. The current government has also changed the name of the program to the Western Sydney Infrastructure Grants Program.

The objective of the audit was to assess the integrity of the design and administration of the WestInvest program. This included assessing the processes used in the design and implementation of the program and award of funding.

The audit did not re-assess the merits of individual projects that were submitted for funding consideration and did not examine the implementation of projects that were allocated funding.

Decisions about the objectives and focus areas for the program were made without advice or analysis from the agencies that administered the program

The WestInvest program involved the commitment of $5 billion as a stimulus measure linked to economic recovery from the COVID-19 pandemic. However, there was no business case or other economic analysis conducted to support consideration of the potential benefits and costs of the program. Media releases and the public guidelines for WestInvest stated that western Sydney was affected by the COVID-19 pandemic more severely than other parts of Sydney and regional NSW. These assertions were not supported by evidence or analysis.

Evidence from NSW Treasury provided for this audit indicates that it was asked to prepare the initial proposal for the WestInvest program within a very short timeframe. This limited its ability to conduct research, analysis and consultation that could have informed the development of the program. This is particularly important for the integrity of decisions involving large-scale spending. Staff from NSW Treasury and the Premier's Department advised the audit team that the areas of focus for WestInvest were decided by Ministers and their staff without advice from the audited agencies. There is no documented analysis justifying the decision to focus the program on community infrastructure, or the six ‘areas of focus’ that were selected. The Premier's Department commissioned research from Western Sydney University after the areas of focus for the program had been decided. This did not inform decisions about the program focus but aimed to provide baseline information about community infrastructure in the 15 eligible LGAs which could be used in program evaluation.

The rationale for making 15 LGAs eligible for the program was not clear

It is not clear how the government decided which LGAs would be eligible for WestInvest funding. Public communication about the program referred to the western Sydney region and commented on areas that had been ‘hit hard’ by the COVID-19 pandemic. The specific factors that were used to decide which LGAs were eligible were not explained publicly or documented.

In the 2019–20 NSW Budget papers, "western Sydney" was defined as 12 LGAs. All of these were included as eligible for the WestInvest program. The additional three LGAs that were made eligible for the WestInvest program (Burwood, Canterbury-Bankstown, and Strathfield) were not within the NSW Budget papers definition but were designated "areas of concern" during the COVID-19 pandemic, which meant they were subject to more restrictions than other LGAs at certain points.

Georges River and Bayside LGAs both made public statements that drew attention to the fact that they were not made eligible for the WestInvest program despite being designated areas of concern. Several of the 15 LGAs that were made eligible for WestInvest had not been designated areas of concern during the pandemic, including Penrith, The Hills, and Blue Mountains. 

There was no consultation with eligible councils or other key stakeholders before the program design was decide

The program design had not been subject to consultation with councils or other relevant organisations in western Sydney. This meant that the views of eligible councils and community organisations on strategic priorities in their respective communities were not considered before decisions on program design were made.

Staff from some councils interviewed by the audit team indicated that while funding for community infrastructure is welcome, some councils had other priority areas for infrastructure development that were at least as high as new community infrastructure. As independent entities, each council has its own strategic planning processes to identify and plan for infrastructure projects and other areas of need. These were not considered in the design of the WestInvest program.

Staff at several councils we spoke to highlighted delivery risks to the projects for which they had been allocated funding. These included:

• the short timetable set by the then government (considering the amount of funding available and the requirements for applications) meant that full project development and assurance processes were not completed for most applications when they were submitted
• difficulty complying with the government’s administrative and assurance requirements for funding recipients, such as detailed planning and reporting.

When early planning for WestInvest was being done, both NSW Treasury and the Premier's Department identified the risk that applicants may not be able to deliver funded projects on time or within budget. The absence of consultation, research and analysis before the program design was finalised meant that these factors were not considered before the government had committed to the program. We did not see evidence that the then government had considered the cumulative impact of an additional $5 billion in infrastructure projects on the costs of materials and skilled labour concentrated in the eligible LGAs.

The Premier's Department conducted an online survey (WestInvest 'Have Your Say'), between 23 February 2022 and 31 March 2022. This was open to the public and asked questions about which of the six ‘areas of focus’ were most important to them and what type of community infrastructure projects they would like to see. This found higher levels of community support for two of the six areas (community infrastructure and green and open space).

On 18 April 2022, the Premier's Department released a summary report on the findings of the WestInvest ‘Have Your Say’ Survey. The Premier's Department noted that the survey was for consultation purposes only and did not form part of the application process for the WestInvest program. The Premier's Department stated in its summary report that the survey results 'will feed into the assessment process across the WestInvest Program'.

However, the Premier's Department staff interviewed by the audit team told us that the survey results did not play any formal role in the assessment process or funding recommendations for projects. The survey did not provide data that could be used to inform assessment decisions because:

• responses could be submitted by any member of the public who accessed the survey, not just those living in the LGAs that were eligible for the program, so the data could not be taken as representative of the views of the residents of eligible LGAs
• many survey responses were ruled ineligible as they were deemed to be associated with a community campaign that related to projects outside the focus areas of WestInvest.

The government did not have sufficient regard to risks to the State's credit rating when establishing the WestInvest program

The NSW Government has a policy of maintaining a AAA credit rating for the State of New South Wales. This is codified in the Fiscal Responsibility Act 2012. The NSW Government did not have sufficient regard to the implications and risks of committing $5 billion of funding to the WestInvest program to its credit rating. A risk to the State's credit rating arose because the government may have been perceived to be using proceeds from major asset sales to fund new expenditure, rather than paying down State debt.

The $3 billion NSW government projects round was open to NSW government agencies and administration of the round was led by NSW Treasury. Funding allocated through this round was not subject to the NSW Grants Administration Guide. This is because the funding was awarded to NSW government agencies rather than organisations external to government, so it did not meet the definition of a grant program. Projects were submitted by NSW government agencies to NSW Treasury and were assessed against program criteria by staff from NSW Treasury and the Premier's Department. Each project received a score and advice on whether it was suitable for funding or not. The WestInvest steering committee considered these and provided advice to the then Treasurer.

NSW Treasury prepared guidelines for the $3 billion NSW government projects round, but these were not approved by the then Treasurer until after the program assessment had commenced

NSW Treasury prepared guidelines for the NSW government projects round in September 2021. These were submitted to the then Treasurer for approval in December 2021 but were not approved. This meant that the process for assessing applications for NSW government projects was not agreed between government agencies and the then Treasurer, who was the statutory decision-maker of the allocations of funding. NSW Treasury subsequently prepared an assessment plan based on the unapproved guidelines, which set out more details about the process to be used for assessing applications for the NSW government projects round. The program guidelines were not published, which meant there was no public information about the process for assessing the largest component of the WestInvest program.

In May 2022, the then Treasurer’s Office requested that NSW Treasury make changes to the unapproved guidelines so that projects that delivered 'business as usual' state government infrastructure such as schools, roads, and health infrastructure were no longer considered ineligible for the program. These revised guidelines were approved in June 2022, but were not published. The changes were not consistent with the initial purpose of the WestInvest program which was to fund ‘transformational’ community infrastructure.

The funding advice from the WestInvest steering committee was not followed by the then Treasurer and the justifications for the funding allocation decisions were not documented

One-third of the projects that were allocated funding (9 out of 27) had been assessed by the WestInvest steering committee as having low or moderate merit. These projects were allocated combined funding of $1.1 billion. Reasons that the steering committee gave for assessing these projects as not suitable for funding through the WestInvest program included the absence of completed business cases, incomplete project development, and poor alignment to the objectives and criteria for the WestInvest program as outlined in the original program guidelines.

Staff from NSW Treasury and the Premier's Department put considerable resources into preparing guidelines and assessing and providing advice on the merits and eligibility of applications against these guidelines, but in most cases the advice was not followed by the then Treasurer. There was no documentation of reasons for the departures from steering committee advice. The NSW government projects round was not subject to the NSW Grants Administration Guide, so the requirement under those guidelines for documenting reasons for departures from advice on funding decisions did not apply. However, when the WestInvest program was established, it was noted that any departures from the funding advice from the steering committee would be documented by the then Treasurer. This applied to the entire WestInvest program. None of the projects that were allocated funding through the NSW government projects round were actually given funding, as only allocations of funding were approved by the then Treasurer.

Most of the funding was allocated to projects that did not align with the purpose of WestInvest or meet the assurance requirements of the program

Of the 27 projects that were allocated funding (Exhibit 3), 12 were from the Department of Education and seven from Transport for NSW. This resulted in over $2 billion, or 69% of the funding available through the NSW government projects round, being allocated to state school and road projects. Most of these projects were not aligned with any of the six focus areas of the WestInvest program. In addition, these projects were examples of ‘business as usual’ activities of NSW government agencies that did not clearly align with the initial purpose of the program to deliver transformational community infrastructure that would improve liveability in the 15 eligible LGAs.

Source: NSW Treasury documents.

Conditions were attached to the approval of funding allocations for 21 of the 27 projects. Most of these conditions related to the completion of a business case and other project assurance requirements, which were required under the program guidelines.

Projects approved through the WestInvest program were to receive funding from the Community Services and Facilities Fund (CSFF), which is a legislative fund created under the NSW Generations Funds Act 2018 (the Act). The Act states that the purpose of the CSFF is to provide funding for ‘cost-effective facilities and services’ (s.12(1)). The absence of business cases and other assurance requirements from most of the projects approved created the risk of legislative non-compliance, as many of the projects that had been allocated funding could not clearly demonstrate that they would be cost-effective.

NSW Treasury and the Premier's Department’s assessment of the first group of projects submitted for the NSW government projects round indicated that agencies applying for funding did not understand the purpose or requirements of the program. NSW Treasury and the Premier's Department received 153 applications after the first call for proposals. Most did not align with the stated purpose of WestInvest or meet the assurance requirements that had been set for the program. For example:

• 90 project proposals (59% of those submitted) were assessed as ineligible. Thirty-five of the 90 did not include any infrastructure, which was the main purpose of the WestInvest program. The other 55 proposed infrastructure projects were not consistent with any of six areas of focus for the program.
• 118 proposals (77% of proposals submitted) did not have a business case, which was a requirement of the WestInvest program guidelines.

As the first request for project proposals did not generate enough suitable applications, the then Treasurer made a second request to NSW government agencies in August 2022 seeking additional project proposals. This occurred after the guidelines for the NSW government projects round had been broadened to allow more projects to be considered for funding (discussed above).

Multiple state school projects were allocated funding after being assessed by the WestInvest steering committee as ineligible or unsuitable for funding

The Westmead Education Campus project, valued at $308 million, was rated as ineligible by NSW Treasury and the Premier's Department because it did not address any of the six specified focus areas for the WestInvest program. This meant it did not go through a full assessment against the program criteria and was not submitted to the then Treasurer for funding consideration.

The project was later re-submitted and the then Treasurer subsequently approved it for funding allocation. This occurred after the guidelines for the NSW government projects round had been broadened (discussed above). NSW Treasury's advice on this submission noted that the project had not been fully developed, with key decisions about the delivery model not made, and it did not have a final business case.

The Box Hill (Terry Road) new school project, valued at $112 million was rated as ‘moderate – not suitable for funding consideration at this time’ by the WestInvest steering committee. It was subsequently approved for funding by the then Treasurer.

Nine school upgrade projects with a total value of $478 million were allocated funding by the then Treasurer. Each of these had been assessed as ineligible by NSW Treasury and the Premier's Department against the original program guidelines because they did not meet any of the WestInvest focus areas and were not considered 'transformational'. There were a further 14 similar proposals for school upgrades that were also assessed as ineligible but were not allocated funding.

Funding allocations from the WestInvest program were changed after the 2023 NSW State election

Following the change of government at the 2023 NSW state election, most of the funding decisions announced by the former government were changed. The new government had announced during the election campaign that, if elected, it would redirect some WestInvest funding 'to rebuild Western Sydney schools and Western Sydney hospitals'. Eleven of the 27 projects that had been announced by the former government were not funded by the new government. The combined value of these projects was at around $1.5 billion (Exhibit 4). The seven roads projects that had been allocated funding through WestInvest, valued at $1 billion, were also removed from the WestInvest funding allocation but these still received funding from a different source.

Source: NSW Treasury documents.

The funding was reallocated to 17 projects that the new government had announced as election commitments during the 2023 State election campaign. This comprised ten school infrastructure projects, five health infrastructure projects, and two transport infrastructure projects. All of these projects had a cost of more than $10 million each, which means they are subject to NSW Government business case and gateway assurance requirements. Business cases had been completed for the two transport projects. The other 15 projects did not have business cases.

Source: NSW Treasury documents.

After these changes, the $3 billion NSW government projects round funding distribution was:

• Nine school upgrades, valued at $478 million, that had been allocated funding by the former government (see Exhibit 3).
• 17 new projects, with a total value of around $2.3 billion, that had been announced as election commitments by the new government (Exhibit 5). All of these are state school, health, or transport infrastructure.
• Three projects that covered administrative costs associated with the WestInvest program, with a total value of around $230 million (not previously announced).

The $1.6 billion community project grants - competitive round was open to local councils, NGOs, Local Aboriginal Land Councils, and educational institutions, across 15 eligible LGAs in western Sydney. Exhibit 6 shows a timeline of key dates for the community project grants - competitive round.

The $400 million local government projects round was administered as a non-competitive grant round that was only open to the 15 eligible councils. Each council was allocated a portion of the $400 million funding via a formula that provided a base allocation and an additional amount based on the population of each LGA. Each council received between $21 million and $35 million.

Applications for funding were submitted to the Premier's Department for assessment. Proposed projects were required to be eligible for the program and be rated as having merit against the published program criteria, which were the same as those for the competitive round. Exhibit 12 shows a timeline of key dates for the Local government projects competitive round.

Appendix one – Responses from audited agencies

Appendix two – About the audit

Appendix three – Performance auditing

© Copyright reserved by the Audit Office of New South Wales. All rights reserved. No part of this publication may be reproduced without prior consent of the Audit Office of New South Wales. The Audit Office does not accept responsibility for loss or damage suffered by any person acting on or refraining from action as a result of any of this material.

Parliamentary reference - Report number #391 - released 28 February 2024.

What this report is about 

This report assesses how effectively SafeWork NSW, a part of the Department of Customer Service (DCS), has performed its regulatory compliance functions for work health and safety in New South Wales. 

The report includes a case study examining SafeWork NSW's management of a project to develop a realtime monitoring device for airborne silica in workplaces. 

Findings 

There is limited transparency about SafeWork NSW's effectiveness as a regulator. The limited performance information that is available is either subsumed within DCS reporting (or other sources) and is focused on activity, not outcomes. 

As a work health and safety (WHS) regulator, SafeWork NSW lacks an effective strategic and data-driven approach to respond to emerging WHS risks. 

It was slow to respond to the risk of respirable crystalline silica in manufactured stone. 

SafeWork NSW is constrained by an information management system that is over 20 years old and has passed its effective useful life. 

While it has invested effort into ensuring consistent regulatory decisions, SafeWork NSW needs to maintain a focus on this objective, including by ensuring that there is a comprehensive approach to quality assurance. 

SafeWork NSW's engagement of a commercial partner to develop a real-time silica monitoring device did not comply with key procurement obligations. 

There was ineffective governance and process to address important concerns about the accuracy of the real-time silica monitoring device. 

As such, SafeWork NSW did not adequately manage potential WHS risks. 

Recommendations 

The report recommended that DCS should: 

• ensure there is an independent investigation into the procurement of the research partner for the real-time silica detector 
• embed a formal process to review and set its annual regulatory priorities 
• publish a consolidated performance report 
• set long-term priorities, including for workforce planning and technology uplift 
• improve its use of data, and start work to replace its existing complaints handling system 
• review its risk culture and its risk management framework 
• review the quality assurance measures that support consistent regulatory decisions

Read the PDF report.

Parliamentary reference - Report number #390 - released 27 February 2024
 

What this report is about

Transport for NSW (TfNSW) uses the Driver vehicle System (DRIVES) to support its regulatory functions. The system covers over 6.2 million driver licences and over seven million vehicle registrations.

DRIVES first went live in 1991 and has been significantly extended and updated since, though is still based around the same core system. The system is at end of life but has become an important service for Service NSW and the NSW Police Force.

DRIVES now includes some services to other parts of government and non-government entities which have little or no connection to transport. There are 141 users of DRIVES in total, including commercial insurers, national regulators, and individual citizens.

This audit assessed whether TfNSW is effectively managing DRIVES and planning to transition it to a modernised system.

Audit findings

TfNSW has not effectively planned the replacement of DRIVES.

It is now working on its third business case for a replacement system but has failed to learn lessons from its past attempts.

In the meantime, TfNSW has not taken a strategic approach to managing DRIVES’ growth.

TfNSW has been slow to reduce the risk of misuse of personal information held in DRIVES. With its delivery partner Service NSW, TfNSW has also been slow to develop and implement automatic monitoring of access.

TfNSW uses recognised processes for managing most aspects of DRIVES, but has not kept the system consistently available for users. TfNSW has lacked accurate service availability information since June 2022, when it changed its technology support provider.

TfNSW needs to significantly prioritise cyber security improvements to DRIVES. TfNSW is seeking to lift DRIVES’ cyber defences, but it will not achieve its stated target safeguard level until December 2025.

Even then, one of the target safeguards will not be achieved in full until DRIVES is modernised.

Audit recommendations

TfNSW should:

• implement a service management framework including insight into the views of DRIVES users, and ensuring users can influence the service
• ensure it can accurately and cost effectively calculate when DRIVES is unavailable due to unplanned downtime
• ensure implementation of a capability to automatically detect anomalous patterns of access to DRIVES
• ensure that DRIVES has appropriate cyber security and resilience safeguards in place as a matter of priority
• develop a clear statement of the future role in whole of government service delivery for the system
• resolve key issues currently faced by the DRIVES replacement program including by:
  • clearly setting out a strategy and design for the replacement
  • preparing a specific business case for replacement.

The DRIver VEhicle System_¹ (often known as DRIVES) is the Transport for NSW (TfNSW) system which is used to manage over 6.2 million driver licences and over seven million vehicle registrations in New South Wales.

DRIVES first went live in 1991 and has been significantly extended and enhanced over the past 33 years. DRIVES is a significant NSW Government information system — containing personal information such as home addresses for most of the NSW adult population, sensitive health information such as medical conditions, and biometric data in photographs.

Service NSW, part of the Department of Customer Service, is the NSW Government's 'one stop shop' for services to NSW citizens and businesses. It uses DRIVES when it delivers many transport-related services to NSW citizens such as licence renewals and checks the identity information stored in DRIVES as part of other services delivered to NSW citizens, such as a 'working with children check'.

DRIVES supports TfNSW's regulatory functions and the collection of more than $5 billion in revenue annually for the NSW Government. The system is also used by many organisations outside of the NSW Government including commercial insurers and national regulators, as well as individual citizens who access DRIVES for services such as 'Renew my registration' or 'Book a driver knowledge test'.

TfNSW owns and manages DRIVES. It intends to replace DRIVES with a modernised system to improve its cost, performance, and security.

The objective of this performance audit was to assess whether TfNSW is effectively:

• managing the current system, and 
• planning to transition DRIVES to a modernised system.

The auditee is TfNSW. We have consulted with the Department of Customer Service as a key stakeholder during the audit process.

This part of the report considers whether Transport for NSW (TfNSW) is effectively managing the current system. It considers DRIVES’:

• role in NSW Government service delivery
• ease of use and appropriateness for a modern system
• mechanisms to ensure the service is available for users.

This part of the report considers whether Transport for NSW (TfNSW) is effectively planning to transition DRIVES to a modernised system. It makes findings on the:

•  effort to develop a business case to fund the replacement of DRIVES
• issues which have contributed to the slow progress of the replacement program.

Appendix one – Response from entity 

Appendix two – Statutory and regulatory framework related to DRIVES 

Appendix three – About the audit 

Appendix four – Performance auditing 

Parliamentary reference - Report number #388 - released 20 February 2024.

What this report is about

Results of the audit of the Consolidated State Financial Statements of the New South Wales General Government Sector (GGS) and Total State Sector (TSS) for the year ended 30 June 2023.

Findings

The audit opinion on the 2022–23 Consolidated State Financial Statements was qualified in relation to two issues and included an emphasis of matter.

The first qualification matter is a continuation of the prior year limitation of scope on the audit relating to the Catholic Metropolitan Cemeteries Trust (CMCT), a controlled state entity, who continued to deny access to its management, books and records for the purposes of a financial audit. As a result, the Audit Office was unable to obtain sufficient appropriate audit evidence to support the assets, liabilities, income and expenses relating to CMCT recorded in the TSS and the equity investment recognised in the GGS relating to the net assets of CMCT.

The second qualification matter relates to the limitations on the accuracy and reliability of financial information relating to Statutory Land Managers (SLMs) and Common Trust entities (CTs) controlled by the State and were either exempted from requirements to prepare financial reports, or who were required to submit financial reports and have not done so. The Audit Office was unable to obtain sufficient appropriate audit evidence to determine the impact on the value of non-land assets and liabilities, income and expenses that should be recognised in the 2022–23 Consolidated State Financial Statements and which have not been recorded in the Consolidated State Financial Statements.

The independent audit opinion also includes an emphasis of matter drawing attention to key decisions made by the NSW Government regarding the future of the Transport Asset Holding Entity of New South Wales (TAHE).

Recommendations

The report includes recommendations for NSW Treasury to address several high-risk findings, including:

• ensuring accurate and reliable financial information is available to recognise the non-land balances of SLMs and CTs
• ensuring the CMCT, SLMs and CTs meet their statutory reporting obligations
• conducting a broader review of the financial reporting exemption framework
• continued monitoring of TAHE's control over its assets
• providing timely guidance to the sector relating to legislative or policy changes that impact financial reporting
• developing an accounting policy for the reimbursement of unsuccessful tender bid cost contributions.

Read the PDF report

What this report is about

Result of the Treasury portfolio of agencies’ financial statement audits for the year ended 30 June 2023.

The results of the audit of the NSW Government’s consolidated Total State Sector Accounts (TSSA), which are prepared by NSW Treasury, will be reported separately in our report on ‘State Finances 2023’.

The audit found

Unqualified audit opinions were issued on all general purpose financial statement audits.

Qualified audit opinions were issued on two of the 24 other engagements prepared by portfolio agencies. These related to payments made from Special Deposit Accounts that did not comply with the relevant legislation.

The number of monetary misstatements identified in our audits increased from 29 in 2021–22 to 39 in 2022–23.

The new parental leave policy impacted agencies across all portfolios. NSW Treasury should perform annual assessments to identify changes in legislation and regulation and provide timely guidance to the sector.

Transport for NSW and Sydney Metro have capitalised over $300 million of tender bid costs paid to unsuccessful tender bidders relating to significant infrastructure projects. Whilst NSW Treasury policy provides clarity on the reimbursement of unsuccessful bidders’ costs, clearer guidance on how to account for these costs in agencies’ financial statements is required.

The key audit issues were

Five high-risk issues were reported in 2022–23. Three were new findings on contract management, accounting treatments for workers compensation renewal premium adjustments and the management and oversight of a Special Deposit Account. Two repeat issues referred to the need to improve quality review processes over financial reporting and the timely approval of administration costs.

Portfolio agencies should prioritise and action recommendations to address internal control deficiencies.

This report provides Parliament and other users of the Treasury portfolio of agencies’ financial statements with the results of our audits, analysis, conclusions and recommendations in the following areas:

• financial reporting
• audit observations.

Financial reporting is an important element of good governance. Confidence and transparency in public sector decision-making are enhanced when financial reporting is accurate and timely.

This chapter outlines our audit observations related to the financial reporting of agencies in the Treasury portfolio of agencies (the portfolio) for 2023.

Appropriate financial controls help ensure the efficient and effective use of resources and administration of agency policies. They are essential for quality and timely decision-making.

This chapter outlines our observations and insights from our financial statement audits of agencies in the Treasury portfolio.

Appendix one – Misstatements in financial statements submitted for audit

Appendix two – Early close procedures

Appendix three – Timeliness of financial reporting

Appendix four – Financial data

Appendix five – Acquittals and other opinions

© Copyright reserved by the Audit Office of New South Wales. All rights reserved. No part of this publication may be reproduced without prior consent of the Audit Office of New South Wales. The Audit Office does not accept responsibility for loss or damage suffered by any person acting on or refraining from action as a result of any of this material.

What this report is about

Result of the Transport portfolio of agencies' financial statement audits for the year ended 30 June 2023.

The audit found

Unqualified audit opinions were issued for all Transport portfolio agencies.

An 'emphasis of matter' paragraph was included in the Transport Asset Holding Entity of New South Wales' (TAHE) independent auditor's report, which draws attention to management's disclosure regarding proposed changes to TAHE's operating model.

Government's decision to convert TAHE into a non-commercial Public Non-Financial Corporation may impact the future valuation and the control of TAHE's assets.

Transport for NSW's valuation of roads and bridges resulted in a net increase to its asset value by $15.7 billion.

Transport for NSW and Sydney Metro have capitalised over $300 million of tender bid costs paid to unsuccessful tender bidders relating to significant infrastructure projects. Whilst NSW Treasury policy provides clarity on the reimbursement of unsuccessful bidders' costs, clearer guidance on how to account for these costs in agency's financial statements is required.

The key audit issues were

The number of issues reported to management decreased from 53 in 2021–22 to 49 in 2022–23.

High-risk findings include:

• gaps in how Sydney Metro manages its contractors and how conflicts of interest are recorded and managed
• future financial reporting implications to account for government's proposed changes to TAHE's future operating model, including asset valuations and control assessments of assets and operations
• Parramatta Park Trust's tree assets' valuation methodology needs to be addressed.

Recommendations were made to address the identified deficiencies.

This report provides Parliament and other users of the Transport portfolio of agencies’ financial statements with the results of our audits, analysis, conclusions and recommendations in the following areas:

• financial reporting
• audit observations.

Financial reporting is an important element of good governance. Confidence and transparency in public sector decision making are enhanced when financial reporting is accurate and timely.

This chapter outlines our audit observations related to the financial reporting of agencies in the Transport portfolio of agencies (the portfolio) for 2023.

Appropriate financial controls help ensure the efficient and effective use of resources and administration of agency policies. They are essential for quality and timely decision-making.
This chapter outlines our observations and insights from our financial statement audits of agencies in the Transport portfolio.

Appendix one – Misstatements in financial statements submitted for audit 

Appendix two – Early close procedures

Appendix three – Timeliness of financial reporting 

Appendix four – Financial data 

© Copyright reserved by the Audit Office of New South Wales. All rights reserved. No part of this publication may be reproduced without prior consent of the Audit Office of New South Wales. The Audit Office does not accept responsibility for loss or damage suffered by any person acting on or refraining from action as a result of any of this material.