Agenda and minutes

Audit Panel - Tuesday, 1st November, 2016 2.00 pm

Venue: Lesser Hall - Dukinfield Town Hall. View directions

Contact: Charlotte Forrest on Email: charlotte.forrest@tameside.gov.uk or 0161 342 2346

Items
No.	Item
13.	Declarations of Interest To receive any declarations of interest from Members of the Panel. Minutes: There were no declarations of interest.
14.	Minutes PDF 96 KB The Minutes of the meeting of the Audit Panel held on 31 May 2016 to be signed by the Chair as a correct record (Minutes attached). Minutes: The Minutes of the proceedings of the meeting of the Audit Panel on 31 May 2016 were agreed and signed as a correct record.
15.	Progress Report on Risk Management and Internal Audit Activities April to September 2016 PDF 120 KB To consider a report of the Assistant Executive Director (Finance). Additional documents: Item 4 - Appendix 1 - Information Governance Policy , item 15. PDF 101 KB Item 4 - Appendix 2 - Information Governance Conduct Policy , item 15. PDF 146 KB Item 4 - Appendix 3 - Information Security Incident Reporting Procedure and Practice Note , item 15. PDF 129 KB Item 4 - Appendix 4 - Subject Access Requests Guidance , item 15. PDF 688 KB Minutes: Consideration was given to a report of the Assistant Executive Director (Finance) and Head of Risk Management and Audit Services detailing the work undertaken by the Risk Management and Internal Audit Service between April and September 2016. The following areas of work undertaken by Risk Management and the Internal Audit Service were reported as follows. Risk Management and Insurance – the approved priorities for 2016/17 were detailed as follows: · To facilitate the continued implementation of the Information Governance Framework by:- - Providing advice and guidance in relation to information governance; - Keeping the framework up to date and fit for purpose with any new guidance issued by the Information Commissioners Office; and - Delivering and monitoring training for general users and for staff in high risk areas. · To review the Business Continuity Management system in place to streamline the process to create a management tool that was workable, with a capability to provide knowledge and information should a major incident occur; and · To continue to support managers to assess their risks as services were redesigned to ensure that changes to systems and procedures remained robust and resilient offering cost effective mitigation and that claims for compensation could be successfully repudiated and defended should litigation occur. Panel Members were notified that the risk management system was under review and the Corporate Risk Register was now being presented to the Senior Management Team on a quarterly basis. Operational risk registers for quarter three would be compiled by service areas using the corporate risk register template. With regard to Information Governance Framework a number of documents had been revised to take into account minor structural or procedural changes as follows:- · Information Governance Policy had been updated to reflect structural changes and the addition of the revised Subject Access Request Guidance; · Information Governance Conduct Policy had been updated to reflect the additional Subject Access Request Guidance; · Information Security Incident Reporting Procedure had been updated to reflect some structural changes and included a practice note for undertaking investigations; and · Subject Access Requests Guidance had been refreshed to ensure consistency across all areas of the Council. With regard to Internal Audit, reference was made to the Audit Plan, which had been approved in May 2016 and covered the period April 2016 to March 2017. An update on progress against the plan to 30 September 2016 was provided. It was reported that 42% of the audit plan had been achieved so far, compared with 41% at this stage during 2015/16. It was explained that performance to date had been affected by reduced resources, annual leave and ad hoc requests for reviews, advice and support which were not included in the original plan. It was further explained that the Audit Plan was responsive to the needs of the organisation and as such, it was normal practice to amend the plan during the year. The annual audit plan progress as at 30 September 2016 was outlined to Members. In total, 761 actual days had been delivered with 920 days ... view the full minutes text for item 15.
16.	Local Audit and Accountability Act 2014 PDF 103 KB To consider a report of the Assistant Executive Director (Finance). Additional documents: Appendix 1 , item 16. PDF 470 KB Minutes: Consideration was given to a report of the Assistant Executive Director (Finance) and Head of Risk Management and Audit Services summarising the changes to the arrangements for appointing External Auditors following the closure of the Audit Commission and the end of the transitional arrangements at the conclusion of the 2017/18 audits. Members were informed that the Local Audit and Accountability Act 2014 abolished the Audit Commission and established transitional arrangements for the appointment of external auditors and the setting of audit fees. The Secretary of State Communities and Local Government had recently determined that the transitional arrangements for local government bodies would be extended by one year to include the audit of the accounts for 2017/18. The Council would be able to move to a local appointment of an auditor when the current arrangements came to an end on 31 March 2018. There were three options each with varying risks and opportunities as follows:- · To make a stand-alone appointment; · To set up a joint auditor panel/local joint procurement arrangements; or · To opt-in to a Sector Led Body. The advantages and disadvantages of each option were discussed. Two of the three options would necessitate the establishment of an independent Auditor Panel either specifically for the Council or in collaboration with partners. The Chartered Institute of Public Finance and Accountancy had published guidance for establishing an Auditor Panel, which was appended to the report and considered by the Panel. It was confirmed that no costing information was available for any of the three options, however, it was anticipated that the least costly option would be to set up a joint auditor panel/local joint procurement arrangements. It was reported that the preferred option of the ten Greater Manchester authorities and the Greater Manchester Combined Authority Treasurers was for a Greater Manchester level procurement. This option allowed for economies of scale and enabled a single firm to be able to discharge external audit functions across the conurbation. It also allowed the auditor to take a more strategic approach and should facilitate increased added value in supporting the audited bodies on complex accounting and audit matters whilst minimising the time and cost of separate procurements across Greater Manchester. The Panel were notified that the Council had until December 2017 to make an appointment of an external auditor from April 2018, meaning that one of the options would need to be in place by spring 2017 in order for the contract negotiation process to be carried out during 2017. RESOLVED: (i) That the report be noted; (ii) That the preferred option for Members be a joint auditor panel/local joint procurement arrangements; and (iii) That approval be given for the Council’s Section 151 officer to take the appropriate actions to progress a commissioning and procurement process for the establishment of an Auditor Panel in consultation with the other Greater Manchester Authorities and the Greater Manchester Combined Authority.
17.	Risk Management PDF 104 KB To consider a report of the Assistant Executive Director (Finance). Additional documents: Item 6 - Appendix 1 - Corporate Risk Register October 2016 , item 17. PDF 162 KB Minutes: Consideration was given to a report of the Assistant Executive Director (Finance) and Head of Risk Management and Audit Services detailing a revised and updated Corporate Risk Register, a copy of which was appended to the report. It was explained that risk management was facilitated by the Risk Management and Audit Service and risks were owned by members of the Executive Team with support from Assistant Executive Directors, managers and staff. The Senior Management Team had been consulted with and their comments had been incorporated into the updated risk register. It was reported that a number of risks had been merged to remove duplication, including risks relating to ICT and Emergency Planning. Successfully managed risks, including collection rates for Council Tax and revised Employee Terms and Conditions, had been removed and the following new risks had been added to the register:- · Failure to manage the local home care market to deliver appropriate and timely care packages. · Insufficient care home capacity in the local market to provide appropriate placements or people requiring long term care. · Failure to open a new secondary school in September 2018. The Corporate Risk Register would continue to be presented to the Senior Management Team on a quarterly basis with regular updates provided to the Panel. It had also been agreed to separate the risk register into corporate and operational risk, which recognised that they were different but not of lower or greater weight. RESOLVED (i) That the report be noted; and (ii) That the Corporate Risk Register be approved.
18.	Urgent Items To consider any additional items the Chair is of the opinion shall be dealt with as a matter of urgency. Minutes: There were no urgent items.