tailieunhanh - Internal Audit Report Procurement Process Review
The IS audit team is independent and objective. The team provides the organisation with support to reach its goals by evaluating through a methodical and targeted approach, the effectiveness of the security process and by providing support to improve it. A basic requirement for any audit, and therefore for the IS audit as well, is the unrestricted right to obtain and view information. This means that no information may be withheld from the IS audit team. This also includes the right to view sensitive or classified information related to the information security management and the IT operations provided that the IS. | Department of Finance and Deregulation Chief Operating Officer Group Internal Audit Report Procurement Process Review August 2010 Reference P001 A04 Period of review June - July 2010 Date of final report August 2010 Review Sponsor David Yarra Chief Audit Executive Office of the Chief Audit Executive Circulation Audit Committee Andrew Harvey Assistant Secretary Financial Services Branch COOG Stuart Henry A g Director Procurement Advice and Financial Policy Team COOG This report and PricewaterhouseCoopers deliverables are intended solely for the Department of Finance and Deregulation s internal use and benefit and may not be relied on by any other party. This report may not be distributed to discussed with or otherwise disclosed to any other party without PricewaterhouseCoopers prior written consent. PricewaterhouseCoopers accepts no liability or responsibility to any other party who gains access to this report. PricewaTerhousE oopers @ Glossary Priority ratings have been assigned to issues raised in this report as follows Rating scale for individual findings A Active management required as an extreme priority. Controls are not adequate to address the associated risk. B Active management required as a high priority. Controls are not adequate to address the associated risk. C BPI Active management required as a moderate priority. Controls are not adequate to address the associated risk. Business Process Improvement opportunity. A suggested improvement in efficiency or better practice. Rating scale for overall report Control is inadequate Control is adequate E H M L CC Extreme priority High priority Moderate priority Low priority Control Critical Test controls regularly Note The overall review rating is the residual exposure to Finance after consideration of all findings highlighted in this report. More detail on the rating scales used throughout this report can be found at Appendix E. Limitations Our Internal Audit work was limited to that described in this report and
đang nạp các trang xem trước