7.2 Governance The Auditor-General identified the following: a) The Department did not have an approved fraud prevention plan. b) The internal audit function was not fully operational for the year under review. c) The Head of Internal Audit was not appointed.