Corporate Audit of Security
Final Summary Report

3.6 Investment in Security

A sound security policy framework exists but it is weakened by limited investment in security. For example, there were no overall management processes to establish and monitor security objectives across the Department, and low resource levels meant that existing objectives were unlikely to be met fully. Corporate Security does not have the resources to ensure that security coordinators are trained to the levels required for their position. This resulted in differences in security awareness and possibly reduced vigilance in detecting security infractions and violations. Local managers with security responsibilities indicated that they, generally, could not give priority to security because of higher departmental operational priorities.

The limited investment in security was not effectively integrated within the corporate and regional operations. Security staff across the country attempt to provide leadership, but limited resources, experience and training have restricted their ability to do so. The budget for Corporate Security has been unchanged for the past six years despite changes in the environment. Information technology security, in particular, requires improvements to manage a continuously changing technical environment and the growing reliance placed on this technology for daily operational requirements.

<< Contents| Previous | Next >>

Need Help? Find answers in the Help Centre