Performance audit work program
This section sets out our proposed performance audit specifications for the next three years.
About our annual plan
The Victorian Auditor-General's Office provides independent assurance to Parliament and the Victorian community on the financial integrity and performance of the state.
Under the Audit Act 1994, we are required to prepare and table an annual plan before 30 June each year that describes our proposed work program for the coming financial year.
To provide assurance to the Parliament of Victoria and the Victorian community, the Victorian Auditor-General's Office conducts performance audits and financial audits.
Acronyms and abbreviations
| AMAF | Asset Management Accountability Framework |
| AHV | Aboriginal Housing Victoria |
| CCTV | Closed-circuit television |
| CSV | Court Services Victoria |
| DEDJTR | Department of Economic Development, Jobs, Transport and Resources |
| DELWP | Department of Environment, Land, Water and Planning |
| DET | Department of Educatio |
Annual Plan 2018–19
Body
Section 7A of the Audit Act 1994 requires the Auditor-General to develop an annual plan and present it to Parliament, following consultation with Parliament’s Public Accounts and Estimates Committee. As such it is a key accountability mechanism for the Auditor-General and his office. It sets out our work program and also gives Parliament, the public sector and the Victorian community the opportunity to assess our goals and understand our audit priorities.
Appendix B. Capability levels and descriptions
Figure B1
Capability levels and descriptions based on COBIT 5 ISO/IEC 15504 capability levels
|
Capability level |
Description |
|
|---|---|---|
|
| ||
Appendix A. Audit Act 1994 section 16—submissions and comments
We have consulted with DEDJTR, DELWP, DHHS, DJR and Victoria Police, and we considered their views when reaching our audit conclusions. As required by section 16(3) of the Audit Act 1994, we gave a draft copy of this report, or relevant extracts, to those agencies and asked for their submissions and comments. We also provided a copy of the report to the Department of Premier and Cabinet.
Responsibility for the accuracy, fairness and balance of those comments rests solely with the agency head.
Responses were received as follows:
6 Victoria Police
In this part of the report, we assess whether Victoria Police can effectively recover its critical ICT systems and data if a disruption occurs.
Victoria Police's disaster recovery processes are not robust enough to effectively and efficiently recover all critical systems after a disruption. The agency currently only has capability to recover selected critical systems. Victoria Police needs to do additional work to further develop its disaster recovery processes and capabilities to minimise any loss of critical services in the event of a disruption.
5 Department of Justice and Regulation
In this part of the report, we assess whether DJR can effectively recover its critical ICT systems and data if a disruption occurs.
DJR's disaster recovery processes are not robust enough to effectively and efficiently recover all critical systems after a disruption. DJR currently only has capability to recover selected critical systems. The department needs to do additional work to further develop its disaster recovery processes and capabilities to minimise any loss of critical services in the event of a disruption.
4 Department of Health and Human Services
In this part of the report, we assess whether DHHS can effectively recover its critical ICT systems and data if a disruption occurs.
DHHS's disaster recovery processes are not robust enough to effectively and efficiently recover all critical systems after a disruption. DHHS currently only has capability to recover selected critical systems. The department needs to further develop its disaster recovery processes and capabilities to minimise any loss of critical services in the event of a disruption.