Report of: the internal auditor: BDO

Purpose: to inform the Committee of the reports and recommendations from audits identifying medium-level risks.

Recommendation: That the Audit & Governance Committee considers and notes the report: Business Continuity and Disaster Recovery.

The Committee considered the report and recommendations from the audit by the internal auditor, BDO of the council’s Business Continuity and Disaster Recovery planning.

Gurpreet Dulay, BDO, introduced the report. In answer to questions he and the Head of Finance said:

·         good business continuity plans helped an organisation recover much faster and at less cost in the event of a major incident;

·         at the end of March the business continuity plan for ICT would be tested;

·         Zurich Municipal were contracted in an advisory role and would be providing some training over the next year.

·         once service area and corporate plans were complete, Zurich would review these to identify gaps and training needs, including desk top and full testing.

·         The timetable was realistic.

The Committee noted the report.

Report(s) of: the internal auditor: BDO

Purpose: to inform the Committee of the reports and recommendations from audits identifying medium-level risks.

Recommendation: That the Audit & Governance Committee considers and notes the report(s).

The Committee considered reports and recommendations from audits by the internal auditor, BDO, identifying medium-level risks:

a)    Accounts receivable

b)    Payroll.

Reports of the internal auditor.

Purpose: to consider the reports and recommendations from audits identifying medium-level risks.

Recommendation: to discuss and note the reports.

The Committee noted that BDO, the internal auditors, had submitted two reports relating to audits identifying medium-level risks.

The first report was considered at Minute 6.

The second was considered at Minute 14 a).