Public Accounts Committee on Nov. 2nd, 2010

It has cost, because we're doing it. We've started this effort, so costs have been incurred.

We're no longer talking about $300 million going forward from today. We're talking about $300 million going forward from the time at which that estimate was prepared. Some of that work has taken place. Some of that remediation has taken place. And some of the benefits of that are now going to be disclosed through the statements that will be tabled tomorrow.

The $300 million costs, I will say again, were the foundation costs. We also need to talk about the costs that would happen going forward, year by year. They are two different kinds of costs--

If you don't mind, Mr. Chair, I'd like to respond to the question the member put earlier.

I'll answer this question as well.

You're asking if the mechanisms or policies developed followed sound control rules?

Yes, we did discuss the policies that we developed.

May I answer the other question, Mr. Chair?

Mr. Chairman, if I may, perhaps I'd make two comments.

Firstly, I don't recall being personally consulted on the Treasury Board policy on internal control--I don't know if Ms. Cheng was consulted--but I think we were aware that the government was working in that direction. I do not recall that the office formally commented on the policy or if any formal consultations took place.

Perhaps I can also comment, Mr. Chairman, just very briefly, on the question posed about the value of an audit of those departmental financial statements. If I could give my one-sentence answer to that question, it would be that the Auditor General has indicated that she will audit departmental financial statements, if this is a government priority, when the departments are ready to sustain a controls-based audit.

So the value in that audit, then, would be the independent validation that the controls in that department are of sufficient rigour and robustness to support a controls-based audit, that the controls are there at a level of materiality relevant to that department.

I think that's the short answer to that question.

Thank you, Mr. Chairman.

Thank you for the question. It's an excellent question.

The Auditor General is in fact the auditor and does an annual financial statement audit of all crown corporations except two. Those two are the Canada Pension Plan Investment Board and the Bank of Canada. But all federal parent crown corporations are subject to an annual financial audit.

What we're talking about today is the audit of the 22 large departments and agencies. The Auditor General does not presently audit the financial statements of those 22 large departments at the level of departmental financial statements. They are, obviously, included in the public accounts of Canada.

With respect to the agents of Parliament, the Office of the Auditor General does do annual financial audits of the financial statements of each of the agents of Parliament.

So yes we do crowns, and yes we do agents of Parliament annual financial statements, but we do not do the 22 large departments, with the one exception of the Department of Justice in 2009.

Yes, Mr. Chairman, we are.

Under the exact same standard we're proposing here. The Office of the Auditor General's annual financial statements—I think you'll find them included in our departmental performance report—are audited annually, and an opinion is expressed by Welch & Company. They audit us as we would audit large departments and agencies.

Thank you.

The challenges to be ready for a controls-based audit are essentially the same challenges as are embedded in the policies on internal control and the policies on financial management. That is why in the policy on internal control there is a requirement for the disclosure. It requires us to have documentation of controls and evidence of controls. It requires us to make sure that we are consistent and frequent in our reconciliation, so accountancy provisions have to be in place. We have to make sure that we have controls over the computer systems and security and access, that we can do spot-check audits, that we can do post-payment verification, that we have a constant monitoring system in place.

Those are all elements of systems controls or controls that we have to put in place on financial reporting as part of the policy. This is why there is nothing to fear--if I may refer to the previous question--of having an audit done of financial statements, or of a controls-based audit. All we are suggesting is that the measures that we have put in place enable us to achieve a state of readiness in order to be able to undertake or withstand a controls-based audit in whole or in part, should the Comptroller General require that to happen. So all the elements are being put in place for us to do so.

The policies we have put in place were shared informally, and Mr.Wiersema...[Inaudible--Editor]...to say that, but we never require the Auditor General to formally comment on the policies of the Government of Canada because that is not their role and function. They can be aware of and they can be engaged in the discussion and informally receive, but they do not formally comment on the policies that we set out, because those are the policies that the government chooses to put forward.

In that case, we are quite confident about the policies we have put forward and the requirements, which members of Parliament will see from the first disclosures coming out tomorrow, the extent and the depth to which the analysis is done, as well as, again, pointing to the requirements of an action plan of what each organization has committed and is committed to do, in order to get the controls at a level that is required.

That's correct.