Appendix 3
附錄
3
Apart from overseeing the work of external and internal auditors, the
Committee also considered accountability reports from the responsible subject
officers to monitor the financial and administrative control processes in place to
address the capacity risk of long waiting time, breach of security of information
technology risks, and risk of supervision of junior staff in the nursing grade.
The Committee considered reports on the monitoring of compliance with
HA’s Code of Conduct, a review of HA’s whistleblowing arrangement, and
consultancy reviews covering the information technology internal audit
function, and the information security and privacy programme.
As a good corporate governance practice, the Committee conducted a self-
assessment exercise in reviewing its activities in the past two years according to
its Terms of Reference.
除監察外聘核數師及內部審計師的工作外,委員會亦審議不
同專責人員提交的問責報告,以監察現行的財務及行政規管
程序,應對輪候時間過長的服務能力風險、資訊科技資料外
洩風險,以及護理職系督導初級職員的風險。委員會亦審議
醫管局行為守則合規監察報告、醫管局舉報機制檢討 、涵
蓋資訊科技內部審計職能的顧問檢討,以及資訊保安及私隱
計劃。
為體現良好機構管治,委員會進行了自我評核,根據其職權
範圍檢討過去兩年的工作。
152
Hospital Authority Annual Report 2013-2014
