The Chief Internal Auditor introduced his report that identified and evaluated the performance of the Internal Audit Section and included 5 items of note arising from the actual work undertaken during the period 1 September to 31 October 2017. The report focused upon:

• Any items of note arising from audit work conducted;
• Any issues arising that require actions to be taken by Members;
• Performance information relating to the Internal Audit Service;
• Developments being undertaken to improve the effectiveness of the Internal Audit Service.

Members’ attention was drawn specifically to the following items of note that had been identified, namely:

Ethical Framework Audit -An audit was being undertaken to evaluate and review the Council’s Ethical Framework as part of the 2017/18 Internal Audit Plan under the Public Sector Internal Audit Standards evaluating the design, implementation and effectiveness of the Council’s ethics-related objectives, programmes and activities.

General Data Protection Regulation (GDPR) - An audit of the Councils compliance with the requirements of the new GDPR was being undertaken with a completion date of December 2017. The aim of the audit was to ensure that the Council was on track for full compliance with the regulation by the 25 May 2018 deadline. The Assistant Director: Law and Governance informed that the matter of GDPR impacted on many areas of the Council, and that the project was progressing, with a number of training and audit sessions planned. He added that he would be happy to provide and update to Members on the subject when an appropriate stage in the project had been reached.

Counter Fraud Publicity Campaign - Internal Audit, in conjunction with colleagues from across the Council and the Mersey region, had co-ordinated a week long Fraud Awareness campaign during November 2017 to coincide with the International Fraud Awareness week running from 12 November. The aim of the campaign was to raise public awareness, change people’s attitude towards fraud and encourage Wirral residents and businesses to help spot and stop fraud.

Highways Maintenance Contract - At the request of senior managers an audit visit had been made to the local base of the contractor BAM Nuttall to gain an objective audit view on the percentage overhead rates that were being charged to various direct costs and the contractual basis for this. Members informed of complaints and problems experienced with regard to areas of the existing contractual service (i.e. surface coatings and white lines) and issues arising from lack of action regarding promised repairs / making good.

Golf Courses - As a result of concerns raised over cash security, two golf courses (Brackenwood Country Park and Arrowe Park) had been audited during the reporting period that involved on-site visits with the Golf Co-ordinator. Onsite advice was provided and subsequently reported which included the re-positioning of CCTV cameras, actions for daily and weekly cash returns, and the responsibility for administrative checks on amounts banked. Effectiveness of the arrangements and the ensuing outcomes would be reported to the Audit and Risk Management Committee.

A Member questioned why the Data Loss Prevention Follow Up Audit had, as yet, not been completed. The Assistant Chief Executive informed that the previous (Head of Digital) post holder had been optimistic in terms of delivery of this particular project, having based his estimations upon an expectation of additional funding. He thanked the current Interim Head of Digital and SIRO post holder for taking on the role and informed the Audit and Risk Management Committee that an update report on this and other IT matters was due to be considered later in the meeting under Agenda Item 9. 

Resolved – that the report be noted.