Department of Corporate and Information Services annual report 2016-17
Annual report 2016-17
Northern Territory. Department of Corporate and Information Services
E-Publications; E-Books; PublicationNT; Department of Corporate and Information Services annual report; Annual report
2017
Made available by the Library & Archives NT via the Publications (Legal Deposit) Act 2004 (NT).
English
Northern Territory. Department of Corporate and Information Services -- Periodical
Northern Territory Government
Darwin
Department of Corporate and Information Services annual report; Annual report
2016/2017
application/pdf
1835-2332
Attribution International 4.0 (CC BY 4.0)
Northern Territory Government
https://creativecommons.org/licenses/by/4.0
https://hdl.handle.net/10070/304926
https://hdl.handle.net/10070/361114
Annual Report 2016-17 | Department of Corporate and Information Services 225 APPENDICES Data Centre Services Financial Statement Audit for the year ended 30 June 2016 AUDIT OBJECTIVE: To conduct sufficient audit work to form an opinion on the financial statements of Data Centre Services for the year ended 30 June 2016. AUDIT OUTCOME: An unmodified audit opinion was issued on Data Centre Services financial statements. Two matters were identified during the audit: Information requested for audit purposes was not provided on a timely basis. Accounting treatment for perpetual licences and license keys requires further consideration to ensure that accounting standards are complied with. ACTION: Data Centre Services procedures have been changed to improve financial reporting processes. Advice sought to determine appropriate accounting treatment for IT purchases in line with Australian AccountingStandards. EFT Accounts Receivable Audit AUDIT OBJECTIVE: To obtain reliance on the operation of applications and general IT controls relating to the EFT Accounts Receivable (including GAS A/R module and NAB Transact) with a focus on controls over refunds. AUDIT OUTCOME: There were three matters identified during the audit: access security controls over GAS A/R module and NAB Transact administrative access, including segregation of duties could be enhanced removal of terminated users access to GAS A/R module and NAB Transact should be undertaken on a timely basis Disaster Recovery Plan and Business Continuity Plan testing has not occurred. ACTION: Administrator access to GAS AR security profiles is reviewed twice a year and a biannual review instigated for NAB Transact profiles. To further enhance controls, DCIS will assess the accounts receivable process to identify and document powerful/sensitive transactions and any segregation of duties requirements, which will be reflected in the GAS AR and NAB Transact security profiles. Changes and removal of user access to NAB Transact and GAS AR is the responsibility of each agency. DCIS remindsagencies twice each year to check their user profiles and access are appropriate and advise if changes arerequired. Testing of Business Continuity Plans commenced in June 2017. Government Accounting System (GAS) Controls Audit for the year ended 30 June 2017 AUDIT OBJECTIVE: To determine whether there is: reasonable assurance that there are satisfactory internal controls in respect of the central maintenance of GAS and certain financial services provided to agencies adequate and effective communication with agencies with respect to the functions performed for them. AUDIT OUTCOME: Audit procedures revealed that generally there are satisfactory internal controls in respect of the central maintenance of GAS and over financial services provided to agencies. Two matters were identified during the audit: delinquency notices had not been sent out in accordance with standard operating procedures control weaknesses were identified around RTM procedures. ACTION: A new process using GAS Accounts Receivable data was implemented to strengthen controls. DCIS is working with the Department of Tourism and Culture and governments banking provider, NAB, tostrengthen receipting processes.