List of recommendations
2.40The Committee recommends the Department of Defence provide written advice to the Committee within six months of the tabling of this report detailing the implementation of the CRM system, how it assists with knowledge management and engagement with DISP entities, and its ability to recall accurate, auditable, and accessible data on DISP entities.
2.42The Committee recommends the Department of Defence listen more carefully to industry concerns raised via this inquiry regarding the quality of DISP security training including for APS staff and embed a structured, transparent mechanism to ensure industry feedback directly informs continuous improvement to ensure training meets industry’s reasonable expectations.
2.44The Committee recommends the Department of Defence implement systems which regulate and audit DISP compliance, and:
Within six months of this report being tabled in Parliament, outline in writing to the Committee how all six recommendations of the ANAO in Auditor-General Report No. 4 of 2021-22 have been fully implemented, and any actions which remain outstanding.
Within twelve months of this report being tabled in Parliament, report back in writing to the Committee on its progress in further improving DISP related compliance and audit systems and provide reliable data estimates of:
othe number of contracts that require DISP membership and the classification levels required
othe number of contracts which did not, but were identified as requiring DISP membership, the classification levels required, the dates the contracts were entered into, and any action taken to address these
othe number of contract managers that manage contracts with mandatory DISP membership
othe number of these contract managers who have received training in managing contracts with DISP memberships and how many contract managers lack required training
owhat ongoing mechanism is in place to ensure staff receive the required training in the future
ohow Recommendation 2 of this report has been implemented
ohow the new CRM system is working
oaudit results of an appropriately sized statistically reliable sample of contracts to demonstrate assurance that those requiring DISP clauses have them included
othe number of contracts that triggered a non-compliance escalation pathway, and the actions taken, or penalties imposed, and
oadvice at that time as to the Department’s future approach to DISP audit and assurance.