220527AuCtteePaper1AAICTStrategyReviewCover
CAIRNGORMS NATIONAL PARK AUTHORITY
AUDIT & RISK COMMITTEE
FOR DECISION
Title: INTERNAL AUDIT: ICT STRATEGY REVIEW
Cover Paper Prepared by: ALIX HARKNESS, CLERK TO THE BOARD
Report Submitted by: ASHLEY BICKERSTAFF, AZETS
Purpose
This paper presents the review of the Cairngorms NPA’s approaches and controls in place for our ICT Strategy. The review has been undertaken as part of the agreed Internal Audit Plan for 2021⁄22.
Recommendations
The Audit & Risk Committee is asked to:
a) Consider the internal auditors report and findings; b) Endorse the management responses to recommendations for future action and system improvements.
Executive Summary
Azets have undertaken a review of the Authority’s ICT Strategy. The internal audit report is presented in full at Annex I to this paper.
Four recommendations for improvement actions are raised, all of which have been accepted by management. Responses to recommendations outlining future action to be taken, officers responsible and timetable for action have been set out in the report at Annex I. Two of the recommendations are assessed to have high risk exposure and two have been assessed as moderate risk exposure.
Of the four areas of control assessment covered by the review, two are identified as having their control objectives achieved while with scope for improvement. The remaining two control objectives are assessed as not achieved with inadequate or ineffective controls in place.
Alix Harkness, 18 May 2022 alixharkness@cairngorms.co.uk