Again, we do audits and we put this on our risk-based internal audit plan precisely so that we have an accurate picture of the vulnerabilities in our performance on security. While I fully accept the conclusions that have been made in both of these audits—ours and the AG's—we are not in any way minimizing those faults and vulnerabilities.
Equally, I don't want Canadians to have the impression, through our discussion this morning, that no security provisions are made or that no extensive work has been done. These are vulnerabilities and faults that are important and have been identified. It is not an indictment of our security posture across our mission network.
I'd like Dan to comment on the defence organization and the role it could have played in the past, and is playing now as we have accepted the audit recommendation and work with them.