Agenda item
Internal Audit Block 1 report
- Meeting of National Park Authority, Friday 28th November 2025 10.00 am (Item 113/25)
- View the background to item 113/25
Minutes:
The Finance Manager presented the report which gives Members the Internal Auditors recommendations for block one of the 2025/26 audit and the agreed actions for consideration.
It was noted that the title of the report was incorrect and should be “Internal Audit Report Block 1 2025/26” (instead of Block 2).
The Members discussed the report and the following points were made:
· On page 115 of the report relating to Runbooks and Training the risk is significant. The concerns have been recognised by the IT Team and are already being addressed.
· The Service Risk Register was discussed and the new structure pulls through risk action into service level planning and is embedded into the system for the next service planning stage.
· A “run group” are written down and tested procedures to cover different types of incidents and will document and test the procedures and will ensure that training is in place and details the resourcing and the time spent. It includes the Standard Operation Procedures for recovery.
· This is a public document and much progress has been made in mitigating the risk. Members requested that they receive training in the Risk Register so that informed decisions can be taken.
The recommendation as set out in the report was proposed, seconded, put to the vote and carried.
RESOLVED:
- That the Internal Audit reports for the two areas covered under Block 1 for 2025/26 Risk Management and IT Business Continuity & Disaster Recovery (in appendices 1 and 2 respectively) be received and the proposed actions agreed.
Supporting documents:
-
12. Internal Audit report block 1 final report, item 113/25
PDF 118 KB -
12. Appendix 1-Risk Management Final Report, item 113/25
PDF 227 KB
-
12. Appendix 2-IT BC and DR Final audit report, item 113/25
PDF 259 KB