ARCHIVED - MAF Assessment: Department of Foreign Affairs and International Trade - 2008

1.1 Leadership: Strong

• Regarding Values and Ethics Leadership, the organization is maintaining its Round V (2007-08) assessment of Strong. It has submitted a Management Assertion to CPSA that no significant changes have occurred within the organization to affect this rating.

1.2 Infrastructure: Strong

• Regarding Values and Ethics Plans, the organization is maintaining its Round V (2007-08) assessment of Strong. It has submitted a Management Assertion to CPSA that no significant changes have occurred within the organization to affect this rating.
• Regarding Values and Ethics Risk Assessment and Mitigation, the organization is maintaining its Round V (2007-08) assessment of Strong. It has submitted a Management Assertion to CPSA that no significant changes have occurred within the organization to affect this rating.

1.3 Culture: Strong

• Regarding the Current State of Organizational Values and Ethics, the organization is maintaining its Round V (2007-08) assessment of Strong. It has submitted a Management Assertion to CPSA that no significant changes have occurred within the organization to affect this rating.

2.1 PAA Consistency: Acceptable

• The Strategic Outcome(s) is/are measurable and represents an end-state.

2.2 Measurability: Acceptable

• An adequate Program Activity Architecture has been developed with some issues to be resolved.

2.3 Quality:

• Expected results are not clear and distinct, and are not appropriate to their respective program descriptions.
• The performance indicators are not clear and cannot be used for data collection to provide reliable insight into program effectiveness.

3.1 Business Plan: Acceptable

• Corporate business plan generally aligns resources and accountabilities to priorities.
• Corporate business plan generally integrates human resources, IM/IT, communications or other key corporate plans.
• Sector or branch business plans are generally aligned with the corporate business plan.

3.2 Governance Structure: Acceptable

• Organization's corporate governance structure is generally aligned to the organization's PAA.
• Recordkeeping is generally complete and current (minutes of meetings and records of discussion, decision, and follow-up).
• Resource reallocation is generally proactive when or where required.
• Senior corporate management structure (e.g., committees) interacts with and provides oversight to the supporting governance structure.
• Senior corporate management structure or subordinate governance structure (e.g., committees) meet regularly.
• Senior corporate management structure or subordinate governance structure (e.g., committees) meet regularly.
• Terms of reference for all levels in the governance structure are current and complete.

4.1 Leadership of Priority Initiatives: Acceptable

• The organization is effectively leading its priority interdepartmental initiative.

4.2 Participation in Priority Initiatives: Acceptable

• The organization contributes effectively to Public Service Renewal.
• The organization’s commitments are somewhat clear.

4.3 Portfolio Coordination: Acceptable

• Adequate attention paid to developing coherent policy or program approaches across portfolio.
• The Department’s portfolio coordination is effective.

DFAIT has been assessed on its leadership of the Americas Strategy - Acceptable, and its participation in Web of Rules - Acceptable; Public Service Renewal - Strong; Afghanistan - Acceptable; Francophone Summit - Acceptable; and Clean Air Agenda - Acceptable.

5.1 Supporting Information: Acceptable

• Minor inaccuracies in information relative to TBS financial data exists.
• Organization has established a capacity to assemble usually accurate, reliable and complete supporting information in TB submissions.
• Organization has the capacity to respond effectively to most TBS feedback.
• Policy and budget authorities are usually identified.
• Responses to TBS comments are incomplete.

5.2 Analysis: Acceptable

• Analysis of value for money is partially effective or efficient.
• Business cases may have comprehensive information and demonstrate good analysis.
• Established capacity for analysis on implementation is evident.
• Established capacity for options analysis is demonstrated.
• Established capacity in the understanding of external pressures exists.
• Generally, the correct policy authorities are used.
• Responses to TBS comments are incomplete.
• Some links to MRRS, strategic objectives, etc., are present.

5.3 Consultations: Opportunity for Improvement

• Consultations are sometimes late (less than six weeks before TB meetings).
• Emerging capacity to plan and to initiate consultations with TBS with sufficient lead time is lacking.
• Organization should be better able to predict factors that lead to occasional lateness.

5.4 Quality control: Opportunity for Improvement

• Consistency of information throughout documents is lacking.
• Important information is only sometimes included in the first draft.
• Quality control process is sometimes evident and is partially effective.
• Response to TBS feedback is uneven across submissions.
• Writing and translation standards are fair.

6.1 Quality: Strong

• Evaluations submitted to TBS usually present findings, conclusions and recommendations that are supported by the evidence found in the evaluation report.
• The majority of evaluations submitted to TBS consistently address questions of program relevance, success and effectiveness.
• The majority of evaluations submitted to TBS consistently employ appropriate methodologies to gather data and inform the analysis.
• The majority of evaluations submitted to TBS include a management response and an action plan detailing timelines and management accountabilities.
• The majority of evaluations submitted to TBS include analysis of the limitations of the methodology and data sources used.
• The majority of evaluations submitted to TBS use multiple lines of evidence. Evaluations reflect the diversity and perspectives of multiple program stakeholders.

6.2 Neutrality: Acceptable

• All resources dedicated to evaluations are directed by the Head of Evaluation.
• Evaluation function resourcing is commensurate with the organizational evaluation plan.
• Senior management committee is in place to support, oversee and monitor the evaluation function and management accountabilities arising from evaluations and evaluation related products. The committee is chaired by the deputy head or senior level designate. The committee meets regularly during the year.

6.3 Coverage: Acceptable

• Option 1: The organization is working according to its evaluation plan and has shown evidence of moving towards full evaluation coverage of its program base (e.g. over a five year cycle). Current annual evaluation coverage is between 10-15% of total direct program expenditures.
• The organization has shared its risk-based evaluation plan with TBS. The evaluation plan has information on evaluations planned, completed and carried over. It also includes links to the organization's PAA.
• The organization has shown evidence of moving towards full coverage of all ongoing programs of grants and contributions over a five year cycle as per 42.1 of the FAA. Current annual evaluation coverage of G&Cs is more than 15%.

6.4 Usage: Acceptable

• Active, systematic and regular tracking of management action plans arising from evaluation recommendations is in place.
• Less than 40% of RMAFs are implemented.
• Some evaluations submitted to TBS incorporate data from a performance measurement system to support the evaluation. Submitted evaluations usually cite data availability and/or quality as constraints.
• The results of evaluations are almost always brought for consideration in TB submissions, Memorandum to Cabinet, RPPs, DPR and Strategic Reviews.

DFAIT continues to demonstrate a high degree of competence and professionalism in its evaluation function. Over the last year, DFAIT continued to display its commitment to quality evaluation and took several steps intended to bring the function to full maturity. Should these efforts be successful and sustained, DFAIT is well positioned to build on its current capabilities and further develop its leadership role in the evaluation community.

7.1 MRRS Basis: Acceptable

• Any changes in resources are apparent, and the DPR discusses some of them and how they affected results.
• Linkages between resources and results are adequately demonstrated in the reports.

7.2 Credible information: Opportunity for Improvement

• Linkages between PA and Strategic Outcome (SO) level performance are not consistently made.

7.3 Context: Acceptable

• DPR provides a few links to further information.
• There is adequate discussion of lessons learned.

8.1 Change plan: Strong

• Comprehensive organizational change plan exists and matches the scope of change that has been identified.
• Established and robust capacity is in place to evaluate whether or not change is required.

8.2 Engagement: Acceptable

• A learning culture exists within the organization.
• Change management related training programs are available to some components of the organizations.
• Employees are engaged in the strategy development phase.
• Individual and organization-wide change-related training programs are available.

8.3 Assessment: Acceptable

• Assessment plans exist and are broad in scope and detail.
• Change plans and strategies are included in Performance Management Agreements of Senior Executives.
• Change plans and strategies are priorities across the organization.
• Results are apparent.

9.1 Engagement: Acceptable

• Senior management reviews the organization’s Risk Management approach within the current three-year planning cycle.
• The organization has a common risk assessment approach and it has been approved by senior management.
• Senior management ensures that the organization’s Risk Management approach is tailored to the specific needs of the organization.
• Senior management has reviewed/approved the Corporate Risk Profile within the past year.
• Senior management somewhat encourages Risk Management and a risk-smart culture.
• Accountability for key risks is assigned to senior management.

9.2 Implementation: Opportunity for Improvement

• The organization’s Risk Management approach is inconsistently communicated to staff and stakeholders.
• The Corporate Risk Profile is systematically (horizontally and vertically) implemented into most operational levels across the organization.
• Risk Management guidance and tools that enable the organization’s risk management approach are inconsistently made available to staff.

9.3 Integration: Opportunity for Improvement

• Risk information is inconsistently considered and consulted for senior management decision-making.
• Risk information and Risk Management principles influence planning and resource allocation decisions.
• Operational level risks are inconsistently prioritized into key risks.
• Risk information and Risk Management principles are adequately captured in senior management reporting.
• The organization makes inconsistent course corrections based on Risk Management performance and new information.

9.4 Continuous Improvement: Acceptable

• Most relevant external sources are consulted during the development of the organization’s CRP.
• Key risk information was adequately gathered from internal sources of the organization for preparing the CRP.
• Corporate risks are consistently linked to the organization’s strategic outcomes and are adjusted as required.
• The CRP provides a reliable assessment of the quality of risk information used.
• The organization adequately builds on past experience, better practice, and adjusts to fit any changes in management structures, priorities or strategic direction.
• The organization has implemented some recommendations provided during its last MAF assessment.

DFAIT corporate risks are consistently linked to the organization’s strategic outcomes and are adjusted as required. Additionally, DFAIT uses risk information and risk management principles to influence planning and resource allocation decisions. DFAIT senior management has reviewed and approved the CRP within the past year and the CRP appears to be systematically implemented into most operational levels across the organization.

10.1 Fair: Acceptable

• Organization is undertaking action to improve the classification program in accordance with its level of risk.
• Evidence shows that labour relations matters are consistently and appropriately managed/addressed.
• Evidence shows that the organization exceeds standards of timeliness in payments to employees.
• Evidence shows that the organization is in compliance with Labour Relations and Compensation Operations direction (terms and condition of employment, collective agreements and/or applicable legislation).

10.2 Enabling: Acceptable

• Organization demonstrates the necessary linguistic capacity to provide personal and central services and supervision in both official languages.
• Organization progress remains unchanged from the previous year in representation, recruitment, promotions and separations of the four employment equity groups.
• Promotions among employment equity groups are greater than or equal to previous year's performance.
• Separations among employment equity groups are equal or greater than previous year's performance.
• The organization is under-represented in more than one of the four employment equity designated groups.
• Work instruments, electronic systems and communications with employees are always or nearly always available in both official languages.

10.3 Healthy and safe: Opportunity for Improvement

• Employees feel recognized for positive performance.
• Evidence shows that the organization has an inadequately managed program to protect employees' occupational health and safety.

11.1 Productive: Opportunity for Improvement

• An insufficient number of employees indicate their organization supports their career development and learning needs.

11.2 Principled: Opportunity for Improvement

• Communications with and services to the public in both official languages are generally available.
• Employees consider that they always or nearly always can communicate in the official language of their choice within their organization and work instruments, electronic systems and communications in both official languages are always or nearly always available.
• Necessary linguistic capacity is in place as is shown by the vast majority of incumbents of bilingual positions who meet the language requirements of their position.
• Organization is under-represented in one or more of the four employment equity designated groups.
• Promotions among employment equity groups are less than representation for at least one group.

11.3 Sustainable: Acceptable

• Evidence indicates human resources planning integrated with business planning is generally in place and governance/organizational infrastructure generally exists to support it.

11.4 Adaptable: Acceptable

• A sufficient number of employees indicate their organization encourages continuous learning, improvement and innovation.

12.1 Governance: Strong

• IM requirements are fully integrated as a part of the approval, development, implementation, evaluation, and reporting of departmental policies, programs, services, and projects and mechanism are in place to continuously evaluate and modify the requirements.
• IM is fully represented in the corporate-wide governance structure and in the corporate-wide governance or approval committee(s).
• Extensive participation is evident in GC-wide approaches and initiatives related to developing, implementing, sharing, and leveraging IM policies and practices.

12.2 Strategy: Strong

• An approved and resourced IM strategy identifies support to business priorities and operations, information needs and accountabilities, IM policy considerations and is integrated with corporate strategies, plans, and planning cycles.
• An IM strategy implementation plan, including timelines and resources, is underway and achievements are evident. Mechanisms are in place to continuously evaluate and modify the plan.
• An IM awareness campaign or strategy is underway and all staff and executives are informed of their IM roles, responsibilities and accountabilities, and most have attended awareness/training sessions.

12.3 Privacy Act: Opportunity for Improvement

• Some collections of personal information under the control of the organization have not been appropriately identified or described in accordance with the Privacy Act.

12.4 Access to Information Act: Opportunity for Improvement

• A significant number of institution-specific Classes of Records do not meet Treasury Board Secretariat requirements.
• Although the organization has made several improvements to its 2008 Chapter of Info Source: Sources of Federal Government Information, revisions are still necessary to meet all Treasury Board Secretariat requirements.

Although the overall rating for DFAIT is Acceptable, the Department has not met several of the assessed statutory requirements of the Access to Information and Privacy Acts.

13.1 Leadership: Strong

• The senior official has responsibility and accountability for the full scope of information technology responsibilities and ensures that information technology supports organizational outcomes.
• Organization actively participates and demonstrates leadership in setting government-wide directions for information technology.

13.2 Planning: Acceptable

• Acceptable information technology plan is in place that aligns with the government-wide directions for information technology and departmental business needs.
• Organization has aligned corporate and information technology governance structures and has an integrated planning process.

13.3 Value: Strong

• Organization analyzes and plans for the appropriate use of information technology shared services to an optimal extent.
• Organization demonstrates management commitment to service costing, asset management, performance measurement and reporting to ensure value delivery.

14.1 Investment Planning: Acceptable

• The organization has a planning document that ranks priority investments.
• The organization’s investment planning process considers investments over multiple years.
• The investment planning process integrates investments decisions across all asset classes.

14.2 Real Property Management: Strong

• All elements of a real property management framework are implemented.
• Comprehensive internal policies are documented and disseminated.
• Reliable and integrated information systems are in place.
• Certification of information in the DFRP is received and accepted.
• Certification of information in the FCSI is received and accepted.
• Contaminated site management is consistent with policy and program guidelines.
• Indicators of real property performance are monitored and performance measurement is ongoing.

14.3 Materiel Management: Strong

• Comprehensive internal policies are documented and disseminated.
• All elements of a materiel management framework are evident.
• Governance structures, approval processes and authority limits are documented and disseminated.
• Reliable and sufficiently integrated information systems are in place.
• New and evolving best practices are introduced.
• A culture of continuous improvement is evident.
• Experience and best practices are shared internally and government-wide.

15.1 Governance and Oversight: Strong

• Business cases, which define expected outcomes, are required to support proposals for major projects.
• Effective organization-wide decision-making processes and procedures ensure that all projects are aligned with the strategic plans and priorities of the organization and all relevant decisions are documented.
• There is evidence of formal and effective organization-wide governance and oversight mechanisms.
• There is no evidence that the organization has exceeded Treasury Board approval limits.

15.2 Effective Management of Project Resources: Strong

• Funding models, which generate effective cost estimates at the work package level and consider historical data and industry benchmarks, are complete and project funds are fully committed.
• The organization has well-defined processes and procedures which ensure that required resources are available and committed and that these requirements are directly linked to HR planning, infrastructure capacity, and budgetary planning documents.
• The organization recognizes project management as a discipline and most employees with project management responsibilities have completed relevant project management training.
• There is no evidence that the organization has failed to meet TB conditions regarding projects.

15.3 Effective Management of Project Results: Strong

• All projects are subject to ongoing monitoring and reporting activities. There is evidence that this information is consistently used to support corrective action and decisions are documented.
• The organization has formal, organization-wide procedures and processes that systematically provide project managers and project oversight mechanisms with all relevant project monitoring and performance information and this information is demonstrably used to support project decisions.
• The organization requires that project milestones, deliverables and outcomes are documented for major projects.
• There is a clear link between the review process and project management governance and oversight mechanisms.

16.1 Governance and Oversight: Acceptable

• Effective, accountable and integrated procurement management processes and controls have been established and incorporated in the organization’s business cycle. (e.g., contract review mechanisms, documented decision making or proper use of delegated authorities).
• Some procurement planning.

16.2 Meeting Operational Requirements: Strong

• Results and reviews are being used to continuously adjust and improve current procurement management activities and future procurement plans.
• Qualified procurement human resources exist.
• Clear links to human resources planning are established (e.g., succession planning and recruitment strategies for procurement staff).
• Consistent procurement training and certification programs exist.
• Efficient, effective and integrated procurement information systems and processes are evident.
• Integrated, timely and accurate procurement financial and non-financial reporting exists.

Following an audit in 2004, DFAIT launched a new contracting management control framework.  The department continues, in systematic fashion, to develop and enhance the framework’s features.  Considerable efforts focused on: governance structures; ensuring qualified staff is in place with mandatory training and complemented by continuous learning; providing accessible, user-friendly tools; and developing information systems.

17.1 Authorities and Policies: Acceptable

• Audit report results show evidence of deficiencies that are of some concern.
• Departmental procedures, tools, training and support for those individuals delegated with Section 34 authority show evidence of good financial management practices.
• Departmental processes for classification of moneys, internal controls for receiving and recording money and depositing money show evidence of deficiencies that are of some concern.
• Departmental processes for informing those delegated with Section 33 authority of their responsibilities and dealing with requests for payments that are problematic show evidence of solid financial management practices.
• Departmental processes to provide individuals delegated Section 33 authority with the information necessary to assess and approve transactions and to assess the adequacy of Section 34 account verification show evidence of good financial management practices.
• The reporting of external user fee information shows only a few omissions in relation to reporting guidelines.

17.2 Public Accounts Reporting: Strong

• Few Central Financial Management Reporting System (CFMRS) coding errors.
• Greater than 97% (Grade A) of Public Accounts plates completed on time.

17.3 Management Capacity: Acceptable

• A significant amount of training is provided for the financial management organization.
• All, or almost all, FIs and management team members in the financial management organization have current, approved learning plans.
• Positions, the duties of which are being performed by an individual indeterminately appointed to that position, comprise a reasonable proportion of the FI segment of the financial management organization.
• Positions, the duties of which are being performed by an individual indeterminately appointed to that position, comprise a reasonable proportion of the positions on the management team of the financial management organization.
• Some processes in support of a sound succession plan for key positions are in place.
• There is a position (or positions) established in the financial management organization that is dedicated to community management and development.
• There is an acceptable functional relationship between the CFO/SFO and FI positions that exist outside the financial management organization. *This row is only applicable where the department or agency indicates there are FI positions outside the financial management organization.

17.4 Financial Statements: Acceptable

• All concerns identified in the audit readiness assessment are addressed in a detailed action plan.
• Several known financial internal control weaknesses remain unremedied.
• The Financial Statements are compliant with Treasury Board Accounting Standard 1.2 – Departmental and Agency Financial Statements and reporting deadlines were met.

17.5 Internal Reporting: Strong

• The internal financial reporting package is accompanied by a good discussion and analysis.
• The internal financial reporting package is presented to senior management less than 15 calendar days after period end.
• The internal financial reporting package is presented to senior management ten or more times per year.
• The process for reviewing information before it is presented to senior management to ensure no material errors or omissions is established.
• The scope of the internal financial reporting package is reasonable.

While the Department improved its overall rating from an OFI to an Acceptable rating, the quality, timeliness and accuracy of the trial balance and Public Accounts plates submitted for purposes of government-wide reporting require improvement.

18.1 Internal Audit governance: Strong

• There is an approved Internal Audit Charter in line with the 2006 Policy on Internal Audit.
• The Implementation Plan covers all of the required policy elements.
• Ongoing monitoring of, and progress in implementing, key elements of the plan are ahead of schedule.
• Chief Audit Executive reports solely and exclusively to the Deputy Head.
• An independent Departmental Audit Committee has either recently been established or is scheduled to be in place and is on track with planned timelines.
• There is an approved Departmental Audit Committee Charter in line with the 2006 Policy on Internal Audit.
• There is a draft annual Departmental Audit Committee Plan for fiscal year 2008-2009.
• There is a written statement indicating that a Departmental Audit Committee Annual Report will be produced for fiscal year 2008-2009 and future years.

18.2 Internal Audit Professional Practices: Opportunity for Improvement

• The Risk-Based Audit Plan was approved by the Deputy Head and sent to the Office of the Comptroller General in an untimely manner.
• The Risk-Based Audit Plan does not include a defined audit universe and there is no risk-ranking of projects.
• Annual Risk-Based Audit Plan methodology is somewhat evident and applied.
• There is evidence of preparation to provide for holistic assurance.
• Most post-engagement follow-up activities are identified.
• There is partial information on the planned use of all audit function resources.
• Vast majority of planned work is on audit assurance versus other types of activities.
• Continuity of previous years work is not clearly identified, or there is limited identification of status and rationale.
• Approved assurance products are not consistent with policy and internal audit standards requirements, containing two or more key methodological deficiencies or no reports have been submitted.
• Reasonable completion rate of assurance products (number of assurance audit reports) against 2007-2008 Risk-Based Audit Plan.
• Internal Quality Assurance and Improvement Program is documented and is in the process of being implemented.
• Assurance products (reports) are produced in a somewhat timely manner.
• Approved assurance products are made accessible to the public in a somewhat timely manner.
• The department or agency provides limited notification to the Treasury Board Secretariat on the posting of reports.

18.3 Administration of the Internal Audit Function: Acceptable

• Some elements of a comprehensive Human Resources Plan have been documented, and evidence of recruitment and external resourcing activity exists.
• Investment in Certified Internal Auditor certification, learning and training represents a minimum of 5% of FTE salaries.

18.4 Internal Audit Performance: Acceptable

• A comprehensive Chief Audit Executive Annual Report for 2007-2008 was presented to the Departmental Audit Committee and the Deputy Head and submitted to the Office of the Comptroller General.
• Limited periodic reporting on the follow-up of Management Action Plans.

The department has taken steps to restructure the Internal Audit function with a direct Chief Audit Executive reporting relationship to the Deputy Head.

19.1 Departmental Security Program: Acceptable

• Organization has in place a fully developed security program that comprises key policy elements and is administered by an appointed Departmental Security Officer (DSO) who is positioned to provide strategic advice and guidance to senior management.
• No significant deficiencies in meeting key policy requirements for the departmental security program.

19.2 Management of IT Security (MITS): Acceptable

• Organization has achieved the three priority objectives that form the foundation for Management of Information Technology Security (MITS) and complies with most MITS requirements.
• No significant deficiencies in meeting key MITS requirements.

19.3 Business Continuity Planning (BCP): Strong

• Organization has a fully developed and sustainable ability to provide for the continuity of critical business operations and services.
• Completed and approved plans are in place for Pandemic and Information Management / Information Technology emergency preparedness.

20.1 Management Engagement – Service and CLF: Acceptable

• There are expectations set by senior management for an institutional focus on meeting the needs of clients, specifically with respect to service standards and client satisfaction measurement.
• There are priorities and goals for service, but not always at the institutional level; these limited priorities and goals are set by senior management based on the use of limited performance evidence.
• There is a committee at the institutional level, composed of senior management accountable for service, which has a documented and communicated responsibility for making decisions about the overall management of service.
• There is limited monitoring of progress by senior management towards the achievement of the goals for service, making course correction difficult.
• There is monitoring by senior management to ensure that the requirements of CLF 2.0 are being met institution-wide; this information is generally used to make timely and proactive decisions and course correction.

20.2 Public/client views: Strong

• Evidence of incorporating feedback in the implementation of its services, programs, policies or initiatives.
• Evidence of making consultation results available to the public.
• Many tools are used to obtain views from some clients.
• There are plans to obtain views from clients.
• There is a clearly identified target clientele for public consultations.

20.3 Official Languages: Acceptable

• Analysis of the Annual Review on OL shows the institution is generally able to meet its obligations.
• Small number of complaints deemed founded by the Commissioner of Official Languages.
• The institution has the necessary linguistic capacity to serve the public in both OL.