tiaa FINAL Head of Internal Audit Annual Opinion 2013/14 Wandsworth CCG May /14

Similar documents
Draft Head of Internal Audit Opinion 2012/13 Isle of Wight NHS Trust

cw audit services BIRMINGHAM AND SOLIHULL MENTAL HEALTH NHS TRUST INTERNAL AUDIT YEAR END REPORT & AUDIT OPINION FINANCIAL YEAR 2007/08

A Housing Association Internal Audit Annual Report 2014/15

Risk Management Strategy

Annual Audit Letter Year ending 31 March NHS West Lancashire CCG 22 June 2018

UNIVERSITY COLLEGE LONDON HOSPITALS NHS FOUNDATION TRUST AUDIT COMMITTEE ANNUAL REPORT 2011/2012

Board of Management Audit Committee

NHS SOUTH LINCOLNSHIRE CLINICAL COMMISSIONING GROUP AUDIT & RISK COMMITTEE TERMS OF REFERENCE

PST Board Assurance Framework

Trust Assurance Framework Reviews. (Structure, Engagement and Alignment 2017/18)

NHS North Somerset Clinical Commissioning Group Risk Management Strategy and Framework

2.2 For Board Members to approve the five high risks the Trust is facing:

Financial Governance Audits

Integrated Risk Management Framework

Annual Audit Letter Year ending 31 March Kent Community Health NHS Foundation Trust August 2018

Audit Committee: Terms of Reference

NHS Darlington Clinical Commissioning Group Audit and Risk Committee Terms of Reference

Auditor Guidance Note 3 (AGN 03) Auditors Work on Value for Money (VFM) Arrangements Version issued on: 10 November 2017

Manchester Health and Care Commissioning. Finance Committee. Terms of Reference

The Annual Audit Letter for Royal National Orthopaedic Hospital NHS Trust

The Annual Audit Letter for Ashford Clinical Commissioning Group

Trust Board Meeting in Public: Wednesday 9 May 2018 TB This is a regular report to the Board

NHS Newcastle Gateshead Clinical Commissioning Group Audit Committee Terms of Reference

ensure there is an effective internal audit function established by management, which provides appropriate independent assurance to the Committee;

Croydon Integrated Governance and Audit Committee. Minutes

Themed Audit Schools Budget Setting, Management and Control

Annual Audit Letter Southport and Ormskirk Hospital NHS Trust 13 July 2016

Annual Audit Letter Year ending 31 March NHS West Cheshire Clinical Commissioning Group July 2018

MIFID II Level 2 (draft ) Item 3. Investor protection issues

ANNUAL GOVERNANCE STATEMENT FOR THE POLICE AND CRIME COMMISSIONER FOR NORFOLK AND THE CHIEF CONSTABLE FOR NORFOLK

The Annual Audit Letter for NHS Croydon Clinical Commissioning Group

CO14: Risk Management Policy

The Mid Yorkshire Hospitals NHS Trust

The Annual Audit Letter for West Hertfordshire Hospitals NHS Trust

VELINDRE NHS TRUST INTERNAL AUDIT REVIEW GENERAL LEDGER

The Annual Audit Letter for London Borough of Richmond upon Thames

Hartlepool and Stockton on Tees CCG Annual Audit Letter On the Audit for the year ending 31 March 2014 July 2014

INTEGRATED RISK MANAGEMENT FRAMEWORK

BOARD ASSURANCE FRAMEWORK BoD 44/14

REPORT BY THE COMPTROLLER AND AUDITOR GENERAL HC 996 SESSION FEBRUARY Cabinet Office. Improving government procurement

Principle 1 Institutional investors should publicly disclose their policy on how they will discharge their stewardship responsibilities

Network Rail Limited (the Company ) Terms of Reference. for. The Audit and Risk Committee of the Board

FINAL NOTICE. To: Goldenway Global Investments Gregory Rupert Nathan (UK) Limited New Broad Street House 35 New Broad Street London EC2M 1NH

Peer & Independent review Feedback and additional guidance paper august 2009

Meeting of Bristol Clinical Commissioning Group Governing Body

GROUP RISK COMMITTEE MANDATE

Solent NHS Trust Shadow Historical Due Diligence Paper for Trust Board June 2011

The Annual Audit Letter for London North West Healthcare NHS Trust

LCP GUIDE TO THE NEW EUROPEAN PENSIONS DIRECTIVE DECEMBER 2016

Board of Management Audit Committee

Strategic report. Corporate governance. Financial statements. Financial statements

NHS BROMLEY CLINICAL COMMISSIONING GROUP RISK MANAGEMENT STRATEGY

Board Audit Committee Charter

PRISM Supervisory Commentary 2018

Responsibility for external financial reporting

Local auditor reporting in England 2018

AUDIT COMMITTEE. Terms of Reference

B.29[17d] Medium-term planning in government departments: Four-year plans

BERMUDA MONETARY AUTHORITY THE INSURANCE CODE OF CONDUCT FEBRUARY 2010

Bracknell Forest Council

REDACTED - CENTRAL LONDON, WEST LONDON, HAMMERSMITH AND FULHAM, HOUNSLOW AND EALING CCG COLLABORATIVE

Financial planning handbook

Hartlepool and Stockton on Tees CCG Annual Audit Letter On the Audit for the year ending 31 March 2015 July 2015

Risk Management & Assurance Strategy. Audit Committee. See reference page 38

NHS WOLVERHAMPTON CITY CLINICAL COMMISSIONING GROUP

Hertfordshire County Council

Risk Management Strategy and Board Assurance Framework

MINUTES OF WILTSHIRE AUDIT AND ASSURANCE COMMITTEE MEETING HELD ON TUESDAY, 13 JANUARY 2015 AT 09:30 AT SOUTHGATE HOUSE, DEVIZES

Effective Assurance Frameworks

Integrated Risk Management Framework Sept Page 1 of 17

Chief Constable of North Yorkshire Police

West Park School. Value for Money Statement

The Audit Findings London Borough of Barnet Pension Fund

Commissioning Strategy, Budgets, Budgetary Control and Monitoring Policy

Report to the Sutton Clinical Commissioning Group Board

Midlothian Integration Joint Board

Annual Audit Letter Year ending 31 March NHS Shropshire CCG 27 June 2018

Meaningful, Coherent and Well Positioned Assurance. December 2014

Clinical Commissioning Group Governing Body. Paper Summary Sheet. Date of Meeting: 24 November 2015

Financial Services Authority FINAL NOTICE. The Kyte Group Limited. Business Design Centre 52 Upper Street London N1 0QH. Date: 21 August 2006

FINAL NOTICE. Morgan Stanley & Co International Plc ( Morgan Stanley )

NHS Luton Clinical Commissioning Group

LONDON BOROUGH OF HARINGEY PENSION FUND INVESTMENT STRATEGY STATEMENT. 1. Introduction

Principals and their appointed representatives in the general insurance sector

Audit Committees in Common. NHS Leeds North CCG, NHS Leeds South and East CCG and NHS Leeds West CCG. Terms of Reference

CCG Policy on Primary Care Rebate Schemes (PCRS)

Consideration of Going concern Status 2014/15 Accounts

Re: Compliance with the Criminal Justice (Money Laundering and Terrorist Financing) Act 2010 ( CJA 2010 )

NHS Brighton and Hove Clinical Commissioning Group

NHS TRAFFORD CLINICAL COMMISSIONING GROUP GOVERNING BODY 24 April 2018

BBC PENSION SCHEME BENEFITS COMMITTEE. Terms of Reference Agreed by the Board of BBC Pension Trust Ltd on 1 April 2009

Budgetary Control Policy

Corporate Governance Guideline

Independent auditors report to the members of Experian plc

The Mid Yorkshire Hospitals NHS Trust

DECEMBER Ministry of Defence. Observations on the Ministry of Defence major investment approval process

An Audit of Internal Control Over Financial Reporting That Is Integrated With an Audit of Financial Statements

FINANCE AND AUDIT COMMITTEE TERMS OF REFERENCE

Code of audit practice 2010

MEETING: Governing Body AGENDA ITEM: 6 DATE: 13 December 2018 TITLE: Governing Body Assurance Framework December 2018 AUTHOR:

Transcription:

tiaa Head of Internal Audit Annual Opinion 2013/14 Wandsworth CCG FINAL May 2014 2013/14

FORMAL ANNUAL OPINION OF THE HEAD OF INTERNAL AUDIT ROLES AND RESPONSIBILITIES The whole Governing Body is collectively accountable for maintaining a sound system of internal control and is responsible for putting in place arrangements for gaining assurance about the effectiveness of that overall system. The Annual Governance Statement (AGS) is an annual statement by the Accountable Officer, on behalf of the Governing Body, setting out: how the individual responsibilities of the Accountable Officer are discharged with regard to maintaining a sound system of internal control that supports the achievement of policies, aims and objectives; the purpose of the system of internal control as evidenced by a description of the risk management and review processes, including the Assurance Framework process; the conduct and results of the review of the effectiveness of the system of internal control including any disclosures of significant control failures, together with assurances that actions are or will be taken where appropriate to address issues arising. The organisation s Assurance Framework should bring together all of the evidence required to support the AGS requirements. In accordance with Public Sector Internal Audit Standards, the Head of Internal Audit (HoIA) is required to provide an annual opinion, based upon and limited to the work performed, on the overall adequacy and effectiveness of the organisation s risk management, control and governance processes (i.e. the organisation s system of internal control). This is achieved through a risk-based plan of work, agreed with management and approved by the Audit Committee, which should provide a reasonable level of assurance, subject to the inherent limitations described below. The opinion does not imply that Internal Audit have reviewed all risks and assurances relating to the organisation. The opinion is substantially derived from the conduct of risk-based plans generated from a robust and organisation-led Assurance Framework. As such, it is one component that the Governing Body takes into account in making its AGS. THE HEAD OF INTERNAL AUDIT OPINION The purpose of the annual HoIA Opinion is to contribute to the assurances available to the Accountable Officer and the Governing Body which underpin the Governing Body s own assessment of the effectiveness of the organisation s system of internal control. This Opinion will in turn assist the Governing Body in the completion of its AGS. During the year, Parkhill merged with TIAA Limited. This opinion from TIAA Limited covers the whole of the year, and we have therefore relied on work carried out by Parkhill prior to their transfer to us on 1st October 2013. This opinion is not entirely based on work directly carried out by TIAA Limited for the whole period. When forming this opinion TIAA Limited has taken in good faith the audit assurances previously reported by Parkhill. TIAA does not however accept any liability for errors, omissions or other inaccuracies relating to work completed prior to TIAA taking over responsibility for delivery of audit work on 1st October 2013. Page 2 of 5

TIAA s opinion is set out as follows: 1. Overall opinion; 2. Basis for the opinion; and 3. Commentary. TIAA s overall opinion is that: Significant assurance can be given that there is a generally sound system of internal control, designed to meet the organisation s objectives, and that controls are generally being applied consistently. However, some weakness in the design and/or inconsistent application of controls, put the achievement of particular objectives at risk; The basis for forming TIAA s opinion is as follows: 1. An assessment of the design and operation of the underpinning Assurance Framework and supporting processes; and 2. An assessment of the range of individual opinions arising from risk-based audit assignments, contained within internal audit risk-based plans that have been reported throughout the year. This assessment has taken account of the relative materiality of these areas and management s progress in respect of addressing control weaknesses. Additional areas of work that may support the opinion will be determined locally but are not required for DH purposes e.g. 3. Any reliance that is being placed upon Third Party Assurances. The commentary below provides the context for TIAA s opinion and together with the opinion should be read in its entirety. 1. DESIGN & OPERATION OF ASSURANCE FRAMEWORK AND ASSOCIATED PROCESSES The Governing Body is responsible for putting in place arrangements for gaining assurance about the effectiveness of the organisation s system of internal control. The Assurance Framework (AF) provides NHS organisations with a simple but comprehensive method for the effective and focussed management of the principal risks that arise in meeting their objectives. It provides a structure for the evidence to support the Annual Governance Statement. The AF also facilitates reporting key information to Governing Body, providing it is maintained as a dynamic document. Assurance Frameworks must be in place for the full year ended 31 March 2014 and up to the date of approval of the annual accounts and report, to meet the requirements of the Annual Governance Statement. Keeping the above in mind, we carried out a review of Wandsworth CCG s Assurance Framework and associated arrangements on two separate occasions in this financial year. The first review finalised in August 2013 was a benchmarking exercise where we compared Wandsworth CCG's AF with those of ten other CCGs selected both within and outside of London. The AFs used were reported to the relevant Governing Boards in April or May 2013 and the information assessed was publicly available on CCG websites. A number of best practice recommendations were agreed as part of this review which have subsequently been satisfactorily implemented by management. Page 3 of 5

The second review completed in March 2014, assessed the management and control arrangements in place in respect of the following risks: The AF and Risk Management processes are not documented, or effectively understood and integrated with key processes; The AF document does not sufficiently cover organisational objectives, risks, controls and related assurance on these. The document does not adequately identify gaps and actions and is too long/short, unclear or poorly structured; Lack of ownership and oversight of the AF and Corporate Risk Register by Management and the Governing Body could lead to risks not being adequately managed We gave a Substantial Assurance audit opinion for this review based on the outcome of our discussions with staff and a review of key documentation such as the AF and the Risk Register, together with policy documents and minutes from relevant committees. We are satisfied that the CCG has an adequate AF document in place which is regularly monitored and updated. A total of six medium priority and best practice recommendations were raised in this review which will be implemented by management in 2014/15. The main concerns raised were around risk management processes as detailed below: The Risk Review Group set up in June 2013 whose responsibility was solely to scrutinise risks including mitigation plans, evidence, scoring, descriptions and highlighting changes to the risk register, had not met on a regular basis; There has been no formal risk management training in 2013/14; The CCG should review the items on the BAF listed as Gaps in Assurance and Controls to ensure that gaps identified are really gaps and not assurance or actions. 2. RANGE OF INDIVIDUAL OPINIONS ARISING FROM RISK-BASED AUDITS IN THE YEAR The following risk based audit assignments were carried out this financial year to date: Board Assurance Framework Benchmarking Letter Budget Setting & Budgetary Control - Adequate Assurance Delivery of Savings & QIPP Plans Substantial Assurance Business Intelligence Group Substantial Assurance Board Assurance Framework Substantial Assurance IG Toolkit Version 11.0 Substantial Assurance A Limited Assurance Opinion was provided for the following review: Management of Contracts Database Limited Assurance 3. RELIANCE PLACED UPON THIRD PARTY ASSURANCES KPMG the Internal Auditors for the South London Commissioning Support Unit (SLCSU) have provided a final report on Financial Systems in May 2014. We note from the report that there are no significant control weaknesses and the overall audit opinion provided is Adequate Assurance. Page 4 of 5

4. LIMITATIONS OF SCOPE The only limitation to the scope for this financial year was that our work covered the Wandsworth CCG operated controls whilst reliance is placed on KPMG for their assurances on controls operated on behalf of the CCG by SLCSU. The matters raised in this report are not necessarily a comprehensive statement of all the weaknesses that exist or all the improvements that might be made. This report has been prepared solely for management's use and must not be recited or referred to in whole or in part to third parties without our prior written consent. No responsibility to any third party is accepted as the report has not been prepared, and is not intended, for any other purpose. TIAA neither owes nor accepts any duty of care to any other party who may receive this report and specifically disclaims any liability for loss, damage or expense of whatsoever nature, which is caused by their reliance on our report. Page 5 of 5

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback