Professional Documents
Culture Documents
PIRAP
PIRAP
Version 1.0
e-mail: David_Burbage@wsahs.nsw.gov.au
Background
The audit will be undertaken as part of the 2000 / 2001 Audit Plan.
In order to determine the success of a project, the organisation needed to evaluate the
performance of the system after it is implemented. Through the Post-Implementation
Review (PIR), the organisation determined whether the project met its objectives and,
further, evaluates the development and management processes that supported the
project. The review also compares actual, total project expenditures to the project cost
estimates.
The PIR also determined whether the technology or change of work practice investment
is yielding the expected benefits to the processes, products or services supported by
the organisation.
Approach
* Interviews with project sponsors, project managers (internal and external where
available), systems administrators, data centre and ISD staff to ascertain the
status, maturity, robustness and overall capability of the project.
* Interviews with the project sponsor and other relevant staff to ascertain the
financial and other benefits realisation.
Post Implementation Review
Risk Analysis
1. The application as tendered was at 1, 2 1.1 - 1.7, 2.1 - 2.5, 3.2 - 3.4, 4.1, 2.1, 2.2, 3.1,
variance from what was functional at go live. 4.3, 5.5, 5.9, 6.3, 6.4, 6.7, 6.9, 6.10 3.2. 8.1, PA
2. User expectations have not been 2 1.3, 1.4, 2.2, 3.2 - 3.4, 4.2, 5.4, 3.2, 4.1 - 4.3,
realised. 5.7, 6.3, 6.4, 6.5, 6.7, 7.5 DC, EU, PA
3. Training has been inadequate. 1, 2 2.2, 2.5, 3.1, 3.5, 5.10, 5.11, 7.6 5.1 - 5.3, DC,
PA, EU
4. Manuals are inadequate and out of date. 1 3.5, 5.10 6.1 - 6.3, DC,
PA, EU
5. There is no ongoing administration of 1 3.3, 5.1, 5.6 - 5.8, 6.4, 7.1 - 7.5. 7.1 - 7.7, 8.2,
the system. PA, EU
6. The application is frequently unavailable 1, 2 1.4, 2.4, 3.3, 3.4, 4.3, 5.1 - 5.5, 9.1, 9.2, DC,
or does not work . 5.7, 6.4, 6.8, 7.5 PA, EU
7. The application requires constant 1 1.4, 2.2, 2.4, 3.3, 4.3, 5.1, 5.2, 5.7, 9.1 - 9.3, DC,
application of patches. 6.3, 6.4, 6.8, 6.10, 7.5 PA
8. No SLA was agreed to, or it is not 1, 2 3.4, 4.3, 5.1, 5.3, 5.4, 5.7, 6.4, 6.8, 10.1 - 10.3, DC,
operating. 6.10, 7.5 PA
9. The project has not been capitalised 3 1.2, 4.1, 6.1, 6.2, 6.6, 6.10 11., PA
10. The budget to actual costs were not 1, 3 1.2, 1.5, 1.6, 4.1, 6.1, 6.2, 12.1 - 12.4, PA
properly reconciled.
11. Savings outlined in the business case 1, 2, 3 1.2, 1.5, 1.6, 4.1, 6.1, 6.2, 6.5, 6.6, 12.4, 13.1, 13.2,
have not been realised. PA
Key:
Audit Tests
2. Application Functionality
2.1 Review Business Case / project initiation
documentation / IPS and determine, by questionnaire
and interview with the Project Sponsor, whether the
application / system / project as installed /
implemented at go live stage varied adversely to the
inital proposal.
2.2 Review Change Control documentation to
ascertain level of changes to original specification
4. User Expectation
By questionnaire:
4.1 Ascertain whether user expectations have
been met.
4.2 Ascertain whether ISD expectations have
been met
4.3 Ascertain whether project sponsor=s
expectations have been met
WESTERN SYDNEY AREA HEALTH SERVICE
Post Implementation Review
WESTERN SYDNEY AREA HEALTH SERVICE
Post Implementation Review
5. Training
By questionnaire and Interview:
5.1 Users. Ascertain -
a. Whether users received training
b. Whether the training was timely, adequate and
pertinent
c. Whether users received take away workbooks
5.2 ISD. Ascertain -
a. Whether ISD staff (particularly data centre
staff) received training in the package.
b. Whether processes are in place to identify
deficiencies in training (e.g. constant calls from users
/ system administrators for advice on how to perform
basic functions).
5.3 System Administrator. Ascertain -
a. Whether System Administrators received
adequate and timely training.
b. Whether processes are in place to identify
deficiencies in training (e.g. constant calls from a
single user for advice on how to perform basic
functions).
6. Manuals
By questionnaire and interview:
6.1 Process users:
a. Do users have user manuals;
b. Are manuals kept up to date;
c. Are manuals readily available to all users.
6.2 Systems Administrators:
a. Do System Administrators have appropriate
technical manuals;
b. Are the manuals kept up to date;
c. Is access restricted to valid users only?
6.3 ISD / Data Centre:
a. Do staff have appropriate technical manuals;
b. Are the manuals kept up to date?
7. Administration
By questionnaire and interview ascertain:
7.1 Is there a designated administrator of the
system / process?
7.2 Are relevant records kept of:
WESTERN SYDNEY AREA HEALTH SERVICE
Post Implementation Review
8. Change Control
8.1 Have all changes from the original
specification been logged and authorised?
8.2 Have all changes to the application since go-
live been logged and authorised?
9. System Stability
9.1 Has the system proved robust and:
a. Has downtime been minimal;
b. Have users expressed concern over the
system (speed, durability, poor outcomes);
c. Are there substantial outstanding issues with
the vendors?
9.2 Are there ongoing problems with the
maintenance of the system (software / hardware /
peripherals)?
9.3 Have upgrades been provided in accordance
with contractual obligations?