Audit and Risk Committee 23 Oct 2014

Date:
23 October 2014
Location:

The Royal Scots Club, Douglas Room, 29-31 Abercromby Pl, Edinburgh

Audit & Risk Committee

A G E N D A

Date:     Thursday 23 October 2014
Time:      Public Session 13:15 – 15:00
Venue:   The Royal Scots Club, Douglas Room, 29-31 Abercromby Pl, Edinburgh EH3 6QE
Chair:     Brian Barbour

MEMBERS ONLY SESSION – 09:30 – 10:00

1.  Closed Committee Members Only discussion with Audit Scotland (Gillian Woolman)

CLOSED SESSION – 10:15 – 12:30

STANDING ITEMS:

2. Welcome / Apologies (Brian Barbour)
3. Declarations of Interest (Brian Barbour)


4. Any Other Competent Business (Brian Barbour)

 
5. Approval of Minutes and Action Log (Brian Barbour)


 5.1 Minutes from Meeting held 9th June 2014
 5.2 Action Log from Meeting held 9th June 2014


6. Matters Arising (Brian Barbour)


ITEMS FOR APPROVAL:

7. Annual Report on Fraud & Security to Scottish Government (Lindsey McNeill) - To Follow 

8. Finance: (Amy McDonald)

 8.1 Progress Update Review of Internal Controls and Governance Arrangements - To Follow
 8.2 Final Draft of Annual Reports & Accounts
 8.3 Final Draft Certificates of Assurance
 
9.
Report to those Charged with Governance on the 2013/14 Audit (ISA 260) (Gillian Woolman)
 

10. Recommend Approval of Annual Report and Accounts(Item covered under agenda item 8.2)

11. Internal Audit Procurement Process - Verbal (Amy McDonald)

12. Review of Risk:

 12.1  Scottish Police Authority Risk Register (Graham Stickle) 
 12.2  Police Scotland Risk Register (Supt Alan Waddell)

13.  Data Security:

 13.1 Controls on the Risk Arising from the Loss of Data
 Mobile Devices (Iain Gray)
 13.2 SPA Forensics Review of Data Security (Mark White)

ITEMS FOR INFORMATION:

14.  Impact of Malicious Activity by Staff – 6-month update (Dcc Neil Richardson)

PUBLIC SESSION – 13:15 – 15:00

15. Approval of Minutes and Action Log (Brian Barbour)

 15.1 Minutes from  Meeting held 9th June 2014
 15.2 Action Log from  Meeting held 9th June 2014

16. Review of Risk:

 16.1  Scottish Police Authority Risk Register (Graham Stickle) 
 16.2  Police Scotland Risk Register (Supt Alan Waddell)

17. Forensic Service Controls (Tom Nelson)

18. Internal Audit: (Mark White)

 18.1   Work Plan and Progress Report including Whistleblowing/Confidential Reporting update
 18.2   Rolling Plan of Internal Audits
 18.3   Internal Audit Service Meetings and Review

19. External Reviews: (Tom McMahon)

 19.1 PIRC Audit of SPA Complaints Process/SPA Action Plan - (Will be addressed within Item 20)
 19.2 HMICS Inspection of Custody Visiting - (Will be addressed within Item 20)
 

20. SPA Improvement Tracker (Tom McMahon)

21. SPA Assurance Map (Graham Stickle)

22. Police Scotland Business Assurance Report (Fergus Byrne)

23.  Finance: Technical Update (Amy McDonald)

24. External Audit: ICT Letter 2013/14 (Gillian Woolman)

25. Date of Next Meeting: Teacher Building, St Enoch Square, Glasgow

APPROVED MINUTE 23 OCTOBER 2014