Lancashire County Council internal audit plan 2016/17: progress as at 9 September 2016

Similar documents
F I N A N C I A L R E G U L A T I O N S

council s Budget and Financial Planning Framework

RCT HOMES HOUSING ASSOCIATION JOB DESCRIPTION

BUSINESS CONTINUITY MANAGEMENT POLICY

Business Plan for Financial Management and Business Effectiveness Unit - May 2011 to 30 September 2013

Update on Programme Management Controls & Risks

Job Description Payroll Service Specialist Band 7

Audit, Risk Management and Compliance Committee Charter

Corporate Policy and Strategy Committee

Document Control Sheet

Agency Board Meeting 28 July 2015

Information Governance Policy

Internal Audit Annual Report 2011/12

SR0001 Maintaining Business Continuity including the Council s response to major civil emergencies. (Interim Programme Lead)

SCRUTINY COMMITTEE ITEM MARCH 2012

Governance, Risk and Best Value Committee

Welsh Government Response to the Report of the National Assembly for Wales Public Accounts Committee on Grant Management in Wales Final Report

Note the Chief Internal Auditor s findings to date and gain assurance from Officers that key issues raised are being addressed.

REGULATIONS ON PROVISION OF SERVICES BY STATUTORY AUDITOR OR STATUTORY AUDITING COMPANY

Corporate Health and Safety Policy

Joint ICT Service ICT Strategy

RISK MANAGEMENT POLICY (Revised October 2015)

TIER II STANDARD FOR FINANCIAL MANAGEMENT SPECIALISTS

Emergency Management and Business Continuity Policy

Business Continuity Management Framework

Assistant Director for Corporate Governance (Monitoring Officer)

Business Continuity Policy

School Finance - Headteacher, Principals and Principals

CPA Student Training Records

Bath and North East Somerset Council - Resources Directorate Plan 2016/17 to 2019/20

Multicultural Council of Tasmania GUIDE FOR MANAGEMENT COMMITTEE MEMBERS

Information Governance Strategy & Policy

Annual Governance Statement 2013/14

Corporate Health and Safety Policy

BUDGET MANAGEMENT AND OVERSIGHT POLICY

Annual Governance Statement

Managing Risk Control Environment and Responsibilities

Cllr Ray Theodoulou. Yes Lead Member report dated 18 th March 2013 Tender documents Draft Contracts from the framework

Performance Management Framework

JOB DESCRIPTION. Position Title and Number: Senior Procurement Officer (100618) Health, Wellbeing & Commissioning

MARITIME OPERATOR SAFETY SYSTEM: MARITIME RULE PARTS 19 AND 44

Compliance. Group Standard

Corporate Governance Service Business Plan Modernising Services

Certification of 2014/15 approved local authority grant claims and returns. Technical guidance note GN/GEN/15

AUDIT COMMITTEE 25 JUNE 2015

Service Policy: PODPOL10: Pay Policy The Role and Remuneration of Senior Officers

FISCAL PLAN RESPONSE TO THE AUDITOR GENERAL

Derbyshire County Council Senior Salaries 2014/2015

House of Commons Corporate Governance Framework

2 Matters to report from internal audit work completed during the period

LITTLEHAMPTON TOWN COUNCIL DEPUTY TOWN CLERK & RESPONSIBLE FINANCIAL OFFICER

CONTRACT MANAGEMENT FRAMEWORK

Audit of Business Continuity Planning

Internal Audit Monitoring Report. Audit Report status Assurance. Payroll Final Limited

Richmond-upon-Thames Performance Management Framework

RISK MANAGEMENT FRAMEWORK. 2 RESPONSIBLE PERSON: Sarah Price, Chief Officer

Deputy Sister/Charge Nurse. Staff Nurse. Nursing Assistant

Internal Audit Progress Report Performance and Overview Committee (19 th August 2015) Cheshire Fire Authority

HARLOW COUNCIL PERFORMANCE MANAGEMENT FRAMEWORK

SCHOOL SUPPORT STAFF ROLE PROFILES WITH NJC JES MODEL EVALUATIONS ADMINISTRATION AND MANAGEMENT ROLES

Internal Audit Division

JOB DESCRIPTION. Hours: 37.5 hours per week, worked Monday to Friday

European Investment Bank. Charter for Internal Audit

Internal Audit Annual Assurance Report Cardiff University

Reserve Bank of Fiji Insurance Supervision Policy Statement No. 8 MINIMUM REQUIREMENTS FOR RISK MANAGEMENT FRAMEWORKS OF LICENSED INSURERS IN FIJI

Staffordshire County Council. Civil Contingencies Policy

Code of Corporate Governance

CORPORATE PLAN

Good Practice Guide: the internal audit role in information assurance

Appendix C Accountant in Bankruptcy. Annual report on the 2013/14 audit

CORPORATE SELECT COMMITTEE AGENDA ITEM 11 2 nd March 2005

CURRENT DATA N/A N/A Refer current budget N/A Existing and new clients Other information:

WOMEN S HEALTH VICTORIA POSITION DESCRIPTION

A. Statement of Accountability

GOLDSMITHS University of London COUNCIL. FINANCE AND RESOURCES COMMITTEE 18 March 2014

Position Description

Perth & Kinross Council. Risk Assessment, Annual Audit Plan and Fee Proposal for 2007/08. External Audit Report No: 2008/01

Internal Audit at the University of Cambridge.

BARRAMUNDI L IMITED RISK MANAGEMENT POLICY

Lancashire's Wellbeing Prevention and Early Help Service Pathways

Internal Audit Framework

DORSET & WILTSHIRE FIRE AND RESCUE AUTHORITY Performance, Risk and Business Continuity Management Policy

BOARD OF AUDITORS. European Stability Mechanism. Annual Report to the Board of Governors for the period ended 31 December 2014

CORPORATE PERFORMANCE MANAGEMENT GUIDELINE

Clearing and Settlement Procedures. New Zealand Clearing Limited. Clearing and Settlement Procedures

Shepway District Council Risk Management Policy

HUNTINGDONSHIRE DISTRICT COUNCIL. Internal Audit Service: Annual Report. Meeting/Date: Corporate Governance Panel 15 July 2015

The post holder will be guided by general polices and regulations, but will need to establish the way in which these should be interpreted.

How To Write A Corporate Fraud Plan

BOARD OF AUDITORS Annual Report to the Board of Governors. for the period from 8 October 2012 (date of inauguration)

Internal Audit - progress report and plan

Job No. (Office Use) Directorate Corporate Services Department Programme Management Office Reports to (Job Title) If No state reason

2015 EDUCATION PAYROLL LIMITED STATEMENT OF INTENT

the Audit Committee.

BPU Head of Service Position Statement

Charity Finance. An update on tax, accounting and emerging issues in the charity sector. kpmg.co.uk

Audit Committee. Directors Report. Gary Hughes Chairman, Audit Committee. Gary Hughes Chairman, Audit Committee

Business Continuity Policy. Version 1.0

NHS Greater Huddersfield Clinical Commissioning Group. Remuneration Committee. Terms of Reference

Commissioning Strategy

Transcription:

Appendix B Governance and democratic oversight Corporate governance framework Business effectiveness Risk management Financial governance Performance monitoring Documentation of the council's governance arrangements Operation of the scheme of delegation to officers Effective oversight of corporate governance by the Audit and Governance Committee Preparation and use of the corporate risk register Delivery of the council's financial strategy and budget reductions Oversight of the Lancashire Pension Fund Acting as accountable body for funding Corporate performance monitoring Review of the ownership, completeness and currency of documentation the council is required to hold, publicise and periodically review setting out its governance arrangements. Review of the introduction of the revised scheme of delegation and its operation in practice. Assessment of the constitution and operation of the Audit and Governance Committee against professional guidance and current best practice. Assessment of the principles and practical operation of risk management arrangements to produce a corporate risk register and respond to the issues it records. Risk and control assessment of the measures in place to monitor and achieve planned budget reductions. Assessment of the governance framework to achieve corporate oversight by the council of the Fund, whose assets are owned by the council. Evaluation of the controls that manage the risks in taking on the role of accountable body, taking a sample of the most significant funding streams. Support to management in establishing a revised framework for monitoring and managing achievement of the council's key strategies. Coverage of control across Support to management to improve controls Work to scope this audit work has recently begun, and will be supplemented by additional work to assess the operation of the revised scheme of delegation to officers. This audit has been added to the plan following further discussion with senior management and will be undertaken in conjunction with the audit of the council's governance arrangements as a whole. Members have recently been contacted to discuss this audit, on the basis of a draft risk and control framework. and agreed. Work has started on the operation of the risk management process in the first two quarters of the year, but further controls testing will take place in the third quarter. Whilst scoping this work it became clear that the work undertaken by PricewaterhouseCoopers has addressed the same risks. Although their report is still in draft at this point, we expect that it will provide the council with the assurance it requires and do not intend to undertake any additional work. We understand that the council will be able to take substantial assurance that its controls to mitigate the risks of monitoring and achieving the planned budget reductions are adequately designed and operating effectively. Testing on this work is scheduled for February 2017 but some early work has already begun. We understand that the council now acts as accountable body for very few, but significant, funding streams. The most important ones are the Lancashire Economic Partnership and the Better Care Fund, both of which are subject to specific audit work in the plan for 2016/17. There are no longer a number of disparate smaller funding streams requiring the council to establish and operate a standardised control mechanism, and this work will therefore be removed from the audit plan for this year. A risk and control framework relating to the current process has been developed and is being considered by the audit sponsor, but testing will largely take place in the third quarter of the year. Appendix B: 1

Service delivery Children's services Adults' services Public health & wellbeing services Escalation of matters of strategic or political importance through to the Operations and Delivery management team and beyond if appropriate Identification of, and responses to, external feedback on children's services and schools Data held on LCS (Lancashire Children's Services system provided by Liquidlogic) Oversight of schools' financial management Certification of claims made under the Working Together with Families Programme Case management: supervision and support to front-line social workers to ensure safeguarding of service users Data held on LAS (Lancashire Adult Services system provided by Liquidlogic) Case management: assignment of officers to cases Case management: timely completion of action to statutory and advisory deadlines Case management: delegation of responsibilities to accredited social workers Commissioning and oversight of commissioned public health service provision Compliance testing of the escalation as appropriate of issues arising within individual caseloads or social care teams. This work could be replicated in other service areas but will be piloted here first. Assessment of the potential sources of feedback and operational services' responses to these including escalation of the information to senior management. Compliance testing of the completeness and accuracy of the data records held on LCS. Risk and control evaluation of the arrangements to oversee schools' financial management. Testing to certify that central government's grant funding requirements have been met. Risk and control evaluation of supervision and support arrangements under the new team management arrangements, with full compliance testing. Compliance testing of the completeness and accuracy of the data records held on LAS. Risk and control evaluation of assignment of cases and workloads, with compliance testing following implementation of new team working arrangements. Compliance testing of the timeliness of case management action against the deadlines set in legislation and the council's policies. Compliance testing of the accreditations awarded to social workers to facilitate their taking on enhanced responsibilities for case management decisions. Risk and control evaluation of joint working with the NHS and voluntary sector to provide services within Lancashire., and supporting work relating to risk management s in a number s in a number s in a number Work is scheduled to start in October. This audit work is just beginning, and will be informed by other work done during July and August arising from a whistleblowing call. We intend to draw on the experience of developing and testing the risk and control framework for the data held on LAS. This will be confirmed, but work is scheduled to start in October. and, once agreed, testing will start immediately. We have been working with the service as it has identified the risks and controls framework for the programme and related funding claims, and will review the validation check list and sample claims prior to the first claim being submitted. and agreed with the principal social worker. We will test the current system once we have obtained the information we need about the sample population. This audit will be undertaken in conjunction with the three audits of case management below, all of which impact on the data held on LAS. for this audit and will be agreed with the director of adult services. Testing of this will take place during November, and will be informed by testing of the case management processes. A single risk and control framework has been developed for these three areas of case management and testing on all three is scheduled for October. A risk and control framework has been agreed, and Public health & Operation of the Health and Assessment of the constitution and operation of the A risk and control framework has been agreed and 2

wellbeing services Wellbeing Board Board against professional guidance, local requirements and current best practice, with Corporate commissioning Operation of the Better Care Fund Including assessment of the governance arrangements for the council's use of the Better Care Fund. A risk and control framework has been agreed, and Corporate commissioning Commissioning, design and monitoring of the capital programme Risk and control evaluation of the revised procedures to oversee the whole capital programme, including elements managed by the council for the Lancashire Economic Partnership. We have begun to scope this audit but further work is necessary and the introduction of the new suite of systems has temporarily delayed this. Provision of school places Risk and control evaluation of the provision of school places. This work has begun: a risk and control framework has been developed for discussion with management, and detailed testing of the effectiveness of controls is scheduled to start in October. Operation of the Premises Compliance Team in strategic premises management Assessment of risk and controls in relation to the council's property assets. Work is scheduled to start in October once the property strategy has been approved (subject to any amendments following the public consultation) and compliance officers appointed. Given the change still going on in this area it is possible that the timing of this work may slip. Economic development Lancashire Economic Partnership (LEP): governance and accountability Assessment of the constitution and operation of the Partnership against guidance and local requirements, to ensure the success of the partnership and the effective use of its individual funding streams (Lancashire Enterprise Zone, City Deal, Boost Business Lancashire, Growing Places Fund, Growth Deal Programme). This work is complete and a draft report is being discussed with management, but the findings can be reported and are included in the narrative above. Establish and assess the assurance framework for the programme, including assurance available from other areas of audit work and any work by other organisations. Maximising the value of audit work in other control areas This has been addressed at the same time as the work on the LEP's governance and accountability as it is closely related. An audit was undertaken by the North West Office of the Department for Business, Innovation and Skills in early 2016, which found only two insignificant administrative issues. Not applicable Local Growth Fund certification We have certified that the Department for Communities and Local Government's requirements in respect of Growth Deal funding have been met. The council's use of 39.35 million of grant funding under the Local Growth Fund has been certified as meeting the conditions of that funding. Not applicable Emergency planning Adequacy of the plans in place to address emergencies and civil contingencies Risk and control evaluation of the adequacy of emergency planning, including involvement of appropriate partners and adequacy of testing. and discussed with the audit sponsor, and this audit is now under way. Pension fund administration Administration of the fund to serve its members testing, whilst the council has no other source of assurance over this. s in a number Work is scheduled to start in November. Accounting for the fund testing, whilst the council has no other source of assurance over this. Work is scheduled to start in November. Pension fund Fund investment management Assessment with management of the assurance Work is scheduled to start in November. 3

administration framework and available assurance over the Fund's investments. Fund investment management Follow-up of actions agreed in relation to monitoring the performance of the Pension Fund's investments. Follow-up as required by professional standards Work will take place in November with the other work on the Pension Fund. Service support Business systems Monitoring of the contract with BTLS Risk and control evaluation of contract monitoring, with compliance testing. Work has begun with the audit sponsor and key contact and a risk and control framework has been developed. Work to establish and test the controls in place is now under way. Business processes Financial processes Treasury management Work for 2015/16 is now complete and a report has been issued. The only significant (medium) risk exposure we identified is the lack of compliance with the requirement under Treasury Management Practices that all Audit and Governance Committee members are trained in their oversight role, and the resulting potential for a lack of understanding amongst members of both that committee and the Cabinet. Further compliance testing for 2016/17 will be started in December. for 2015/16 Oracle general ledger This work will be scoped with the audit sponsor and heads of service shortly. Accounts receivable and debt management: central controls Work for 2016/17 incorporating testing of transactions processed in 2015/16 is now complete. The actions agreed by the Finance Team will be implemented during the remainder of 2016/17 and we do not intend to undertake any further work (including follow-up of the agreed actions) on this system during the rest of the year. Limited Accounts receivable and debt management: feeder system controls annual compliance testing of a sample of feeder systems. Work is scheduled to start in November 2016. Cash and banking: central controls including checks over completeness and compliance in other locations Work for 2016/17 incorporating testing of transactions processed in 2015/16 is now complete and we have concluded that the council's central cash receipt and allocation process is adequately designed and operating effectively. Oversight of payroll payments Risk and control evaluation of the council's monitoring and oversight of BTLS's processes, with annual compliance testing. Work is scheduled to start in January 2017 including follow-up of actions agreed in 2015/16. Accounts payable: central controls This work will be scoped with the audit sponsor and heads of service shortly. VAT periodic compliance testing. Work, including follow-up of actions agreed in 2015/16 is scheduled to start in December. Investment Implementation of the treasury Compliance testing of operational policies and 4

management strategy, including refinancing the council's debt procedures, and work with management to understand the nature of the representations being given to lenders and credit rating agencies. Compliance with borrowing limits and any other restrictions on investment Evaluation of the in-service compliance programme and management's responses to its findings. Procurement Central procurement: compliance with legislation, financial regulations and standing orders Risk and control evaluation with annual compliance testing. and agreed. Controls testing is scheduled to start in September. Payroll processing Effectiveness of inputs to the system: the inputs required and how they are processed Risk and control evaluation focussed on system inputs. s in a number Processing of payments by BTLS, using information supplied by LCC testing. s in a number Human resources (and finance) Amendments to the council's establishment: completeness, accuracy and currency of records Risk and control evaluation to ensure that the staff establishment, hierarchies and budgets are aligned, with full compliance testing. ICT Possible work may include general IT controls, IT security and continuity planning, and application controls including the new identity management system External advice is required, including discussions with BTLS, to properly assess the ICT audit work that is appropriate and achievable. s Procurement of specialist ICT audit services will begin shortly. All Completion of agreed action plans Follow-up of work initiated during 2016/17. Action plans agreed in respect of earlier audit periods will not be pursued. Follow-up as required by professional standards As we undertake follow-up work it will be incorporated into the areas of work listed above. Various funding streams Various: predominantly relating to funding for the former Environment Directorate, plus the Working Together with Families Programme Work must be undertaken to meet EU and central government departments' grant funding requirements where funding is given on condition that the Internal Audit Service provides assurance to these bodies that their funding has been spent as intended. Work to certify that the council has met the conditions associated with any grant programme will be listed above in future progress reports. At this point, we are aware only of claims associated with the Working Together with Families Programme, and a claim under the Local Growth Fund. 5

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information