Jon Hansen

---

Jon is a Director with over 29 years’ internal audit (including ICT audit), risk management, program / project management and probity experience. Jon established, and successfully ran, an internal audit service line between 2007 and 2022 for a mid-tier advisory firm. During that time Jon successfully delivered over 500 internal audit and assurance products for over 40 government and private sector clients.

Jon is a member of the Institute of Internal Auditors (IIA) and the Information Systems Audit and Control Association (ISACA), and ensures that all of his audit products comply with the standards and requirements of these organisations.

A few examples of Jon's experience include: 

• Leading the delivery of audit programs for numerous Australian Government entities. These entities included the: Civil Aviation Safety Authority; Department of Foreign Affairs and Trade / AusAID; Department of Infrastructure and Regional Development; Department of Human Services; Digital Transformation Agency; and Australian Research Council.
• Successfully delivering large and complex performance audits for the Australian National Audit Office (ANAO). Both as an employee and a consultant, Jon delivered 15 audits for the ANAO over twelve years. These audits include examinations of: the Australian Taxation Office's taxation rulings system; superannuation systems (including ICT systems); border security programs; and cross-agency business continuity management (including ICT disaster recovery).
• Successfully delivering complex ICT audits for numerous Australian Government entities. These have included audits of:  ICT disaster recovery arrangements; cyber security (including entity compliance with Protective Security Policy Framework, Information Security Manual, and Australian Cyber Security Centre requirements and guidance); application architecture; ICT investment prioritisation; ICT program and project governance; and ICT procurement. 
• Providing portfolio, programme and project assurance for major ICT and business transformations. Using his extensive PRINCE2 and MSP experience, Jon has successfully provided program and project assurance services for a range of Australian government and other clients including: Civil Aviation Authority, Department of Human Services, Department of Defence, and ActewAGL.
• Developing and reviewing audit functions and practices. Jon has successfully completed numerous reviews of the internal audit functions, structures and practices of Australian Government entities including the: Department of Human Services; Department of Health; and Department of Foreign Affairs and Trade. These reviews included assessments of these entities' internal audit functions against comparative organisations using international benchmarking material, and information collected by Jon over 20 years.
• Managing complex probity engagements. Jon has been the lead probity advisor on a range of complex and topical procurements and grant programs. These engagements include: the Department of Home Affairs' visa reform program; the Department of Infrastructure and Transport's Christmas Island Casino feasibility study; Department of Prime Minister and Cabinet's Smart Cities and Suburbs Grants Program; and the Department of Health's procurement of vaccines under the National Immunisation Program.  
• Developing and implementing risk management frameworks and structures. Jon not only has extensive experience reviewing entities' risk management frameworks and practices, but he has also developed and integrated risk management frameworks and controls for a large number of government entites. This includes the development and implementation of compliance risk differential models for Australian Government regulatory agencies that comply with legislative requirements and international standards (including ISO 31000 and ISO 31010). 
• Mentoring audit and assurance staff. Jon has not only taught and mentored his staff, but he is also regularly engaged to mentor and provide audit training to his clients' staff. On a number of occasions, Jon has successfully integrated clients' staff into his teams to not only 'open doors' into a client's organisation, but also to train client staff and improve that client's overall audit capabilities.