Brennan Report - Department of Health and Children
Brennan Report - Department of Health and Children Brennan Report - Department of Health and Children
Report of the Commission on Financial Management and Control Systems in the Health ServiceRecommendations on Risk Assessment and ManagementR8.12 A systematic assessment of all risks (including financial, operational and clinical risks) must be a central andintegral part of all policy development and ongoing operational activity.R8.13 A Risk Assessment Unit should be established with immediate effect by the Secretary General of the Departmentof Health and Children with the task of:(i) Supporting policy makers; and(ii) Driving the implementation of risk management policy and procedures down to local and agency levels.R8.14 In respect of R8.13(i) the role of the Risk Assessment Unit should be to:(i) Support in an integral and ongoing way national policy developments and negotiations;(ii) Provide technical support and advice to individual officers/sections on the identification and managementof risks at policy design stage;(iii) Advise on the design and execution of control measures to minimise risks; and(iv) Review the conduct of risk assessment procedures on new services/schemes within the Department ofHealth and Children.R8.15 In respect of R8.13(ii) the role of the Risk Assessment Unit should be to:(i) Develop, implement and communicate risk management strategy, policy and procedures across the healthservice;(ii) Develop and co-ordinate risk management information requirements, reporting thresholds andmechanisms for determining priorities;(iii) Develop, promote and maintain common methodologies for identifying and assessing risk anddetermining adequacy and cost effectiveness of controls;(iv) Identify and assess accumulations of risk across the health service and interdependencies; and(v) Co-ordinate risk management activity, training and technical support, across the health service.R8.16 A working group should be established to bring forward a report on best practice in terms of risk assessmentand risk management in the health sector.R8.17 The Risk Assessment Unit should make half-yearly reports to the Management Advisory Committee of theDepartment of Health and Children on the ongoing effectiveness of, and compliance with, national riskmanagement policy.R8.18 Internal audit units in all health service agencies should make half-yearly reports to the Chairman of their localaudit committees on the effectiveness of the risk management procedures in place in their organisation. Anylegislative amendments to facilitate this should be implemented.8.6 FRAUDIt is essential that all staff in the health services be aware of the possibility of fraud and beconscious of their individual duties and responsibilities in preventing fraud. The health serviceshave a budget of almost ¤ 9 billion in 2003. In view of the wide range of operations in the healthservices it is possible that fraud may occur. In order to give assurance to the Irish taxpayer, topatients and consumers and to staff, it is important to have a clear policy on fraud that shouldbe communicated and applied consistently throughout the health services.There are a number of elements that assist in preventing fraud. These include:●●●●Staff awareness of the potential for fraud;Strong internal controls built into all operations;Consideration of internal control and risk management in designing new developments,schemes etc;Strong internal and external audit functions;108
Chapter 8 Audit Reform●●Penalties for fraud, including policies for prosecuting fraud, for staff found to havecommitted fraud; andOpportunities for staff to report suspicions of fraud in confidence and without fear ofreprisals or other adverse consequences of carrying out their duties to their employerand the Irish taxpayer. On the contrary, such staff should be rewarded for taking stepsto reduce fraud in their organisation. Such reports should go to someone other thanmanagement (who may be implicated in or compromised by the finding of fraud) such asthe internal auditor.Recommendation on Fraud PolicyR8.19 The health board CEOs should submit, for approval by the Secretary General of the Department of Health andChildren, a written fraud policy statement covering all health boards and all organisations under their aegis.8.7 SUMMARYIn this Chapter, we have made recommendations to improve the timeliness and content offinancial reports and audits, problems with which were previously described in Chapter 2.We have also made recommendations to bring internal audit procedures into line with bestpractice generally and to introduce a comprehensive risk assessment and risk managementfunction. Progress in these areas would provide assurance that systems are operatingproperly and, thus, help ensure that the kind of problems described in Chapter 2 (for example,the over-70s medical card extension, the childcare workers pay deal, unauthorised expenditurebeing incurred and due charges not being imposed) are not repeated.109
- Page 59 and 60: Chapter 4 Service Planning, Budgeti
- Page 61 and 62: Chapter 4 Service Planning, Budgeti
- Page 63 and 64: Chapter 4 Service Planning, Budgeti
- Page 65 and 66: Chapter 5 Accountability - Hospital
- Page 67 and 68: Chapter 5 Accountability - Hospital
- Page 69 and 70: Chapter 5 Accountability - Hospital
- Page 71 and 72: Chapter 5 Accountability - Hospital
- Page 73 and 74: Chapter 5 Accountability - Hospital
- Page 75 and 76: Chapter 5 Accountability - Hospital
- Page 77 and 78: Chapter 5 Accountability - Hospital
- Page 79 and 80: Chapter 6 Accountability - General
- Page 81 and 82: Chapter 6 Accountability - General
- Page 83 and 84: Chapter 6 Accountability - General
- Page 85 and 86: Chapter 6 Accountability - General
- Page 87 and 88: Chapter 6 Accountability - General
- Page 89 and 90: Chapter 7 Accountability - Employme
- Page 91 and 92: Chapter 7 Accountability - Employme
- Page 93 and 94: Chapter 7 Accountability - Employme
- Page 95 and 96: Chapter 7 Accountability - Employme
- Page 97 and 98: Chapter 7 Accountability - Employme
- Page 99 and 100: Chapter 7 Accountability - Employme
- Page 101 and 102: Chapter 8 Audit ReformCHAPTER 8AUDI
- Page 103 and 104: Chapter 8 Audit ReformRecommendatio
- Page 105 and 106: Chapter 8 Audit Reformoutsourcing)
- Page 107 and 108: Chapter 8 Audit Reformaudit reports
- Page 109: Chapter 8 Audit Reformas relating t
- Page 113 and 114: Chapter 9 External Reporting Proced
- Page 115 and 116: Chapter 9 External Reporting Proced
- Page 117 and 118: Chapter 9 External Reporting Proced
- Page 119 and 120: Chapter 10 Information SystemsStrat
- Page 121 and 122: Chapter 10 Information SystemsRecom
- Page 123 and 124: Chapter 11 ImplementationRecommenda
- Page 125 and 126: Chapter 11 Implementationbeing brou
- Page 127 and 128: Appendix 1Appendix 1COMMISSION MEMB
- Page 129 and 130: Appendix 1He has held this position
- Page 131 and 132: Appendix 2SIPTU*South Eastern Healt
- Page 133 and 134: Appendix 3Name of AgencyBord na Rad
- Page 135 and 136: Appendix 3Name of AgencyIrish Blood
- Page 137 and 138: Appendix 3Name of AgencyWomen’s H
- Page 139 and 140: Appendix 4Department of Health and
- Page 141 and 142: Appendix 4collated and assessed by
- Page 143 and 144: Appendix 4The most detailed element
- Page 145 and 146: Appendix 4Ratifying and Submitting
- Page 147 and 148: Appendix 4changes to the Service Pl
- Page 149 and 150: Appendix 4advised of their existenc
- Page 151 and 152: Appendix 4Approvals Required in lin
- Page 153 and 154: Appendix 5Appendix 5DIAGNOSIS RELAT
- Page 155 and 156: Appendix 5Figure: Ax.1 Casemix Adju
- Page 157 and 158: Appendix 6Appendix 6AUDIT OF STRUCT
- Page 159 and 160: Appendix 7(vii)(viii)(ix)participat
Chapter 8 Audit Reform●●Penalties for fraud, including policies for prosecuting fraud, for staff found to havecommitted fraud; <strong>and</strong>Opportunities for staff to report suspicions <strong>of</strong> fraud in confidence <strong>and</strong> without fear <strong>of</strong>reprisals or other adverse consequences <strong>of</strong> carrying out their duties to their employer<strong>and</strong> the Irish taxpayer. On the contrary, such staff should be rewarded for taking stepsto reduce fraud in their organisation. Such reports should go to someone other thanmanagement (who may be implicated in or compromised by the finding <strong>of</strong> fraud) such asthe internal auditor.Recommendation on Fraud PolicyR8.19 The health board CEOs should submit, for approval by the Secretary General <strong>of</strong> the <strong>Department</strong> <strong>of</strong> <strong>Health</strong> <strong>and</strong><strong>Children</strong>, a written fraud policy statement covering all health boards <strong>and</strong> all organisations under their aegis.8.7 SUMMARYIn this Chapter, we have made recommendations to improve the timeliness <strong>and</strong> content <strong>of</strong>financial reports <strong>and</strong> audits, problems with which were previously described in Chapter 2.We have also made recommendations to bring internal audit procedures into line with bestpractice generally <strong>and</strong> to introduce a comprehensive risk assessment <strong>and</strong> risk managementfunction. Progress in these areas would provide assurance that systems are operatingproperly <strong>and</strong>, thus, help ensure that the kind <strong>of</strong> problems described in Chapter 2 (for example,the over-70s medical card extension, the childcare workers pay deal, unauthorised expenditurebeing incurred <strong>and</strong> due charges not being imposed) are not repeated.109