Home
/
Audit Collection

Blog

Filter By

2020 Census: Further Actions Needed to Reduce Key Risks to a Successful Enumeration

Year Published: 2019

Language: English

Sector: Public Administration

Issue: In an effort to control rising costs, the Census Bureau plans to implement several innovations for the 2020 Census, including new IT systems. GAO has made 97 recommendations on the 2020 Census. As of April 2019, 72 had been implemented. This testimony also makes 2 new recommendations to improve Bureau cybersecurity efforts.

The 2020 Decennial Census is on GAO’s list of high-risk programs primarily because the Census Bureau (Bureau) (1) is using innovations that are not expected to be fully tested, (2) continues to face
Read More...

The 2020 Decennial Census is on GAO’s list of high-risk programs primarily because the Census Bureau (Bureau) (1) is using innovations that are not expected to be fully tested, (2) continues to face challenges in implementing information technology (IT) systems, and (3) faces significant cybersecurity risks to its systems and data. Although the Bureau has taken initial steps to address risk, additional actions are needed as these risks could adversely impact the cost, quality, schedule, and security of the enumeration. GAO is making two recommendations to the Bureau to (1) better ensure that cybersecurity weaknesses are addressed within prescribed time frames, and (2) improve its process for addressing cybersecurity weaknesses identified by DHS.
Read Less...

Information Security: Supply Chain Risks Affecting Federal Agencies

Year Published: 2018

Language: English

Sector: Science & Technology

Issue: Reliance on a global supply chain introduces multiple risks to federal information systems. Supply chain threats are present during the various phases of an information system's development life cycle and could create an unacceptable risk to federal agencies.

Reliance on a global supply chain introduces multiple risks to federal information systems. Reliance on a global supply chain introduces multiple risks to federal information systems. These threats ca
Read More...

Reliance on a global supply chain introduces multiple risks to federal information systems. Reliance on a global supply chain introduces multiple risks to federal information systems. These threats can have a range of impacts, including allowing adversaries to take control of systems or decreasing the availability of materials needed to develop systems.
Read Less...

Status of Development, Operation and Use of Government Information Systems

Year Published: 2021

Language: English

Sector: Government Information Systems

Issue: A high proportion of appropriation was left unused or carried-over in some projects, in particular regarding development cost. The percentage of single bidding in competitive-bid contracts was high. Some systems were found to be underutilized, to have no targets set for grasping the utilization status, or to have no monitoring system in place. There was a considerable gap between the actual reduction in FY2020 in the operational cost and the target.

Critical Infrastructure Protection: Actions Needed to Address Significant Weaknesses in TSA's Pipeline Security Program Management

Year Published: 2018

Language: English

Sector: Protecting Cybersecurity of Critical Infrastructure

Issue: The nation depends on the interstate pipeline system to deliver oil, natural gas, and more. This increasingly computerized system is an attractive target for hackers and terrorists.

Technology Assessment: Artificial Intelligence: Emerging Opportunities, Challenges, and Implications

Year Published: 2018

Language: English

Sector: Security of Emerging Technologies

Issue: Artificial intelligence (AI) could improve human life and economic competitiveness—but it also poses new risks.

Performance and financing of obligations assigned to local authorities in relation to national databases

Year Published: 2013

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: National databases

Maintenance and development of information systems in area of government of Estonian Ministry of the Environment

Year Published: 2013

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: Maintenance of information systems, development of information systems

Effectiveness of the development of a broadband network or high-speed Internet

Year Published: 2015

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: Broadband network, high-speed internet

Usability of public e-services

Year Published: 2016

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: Usability of public e-services

Implementation of system of IT security measures in local governments

Year Published: 2018

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: Development of information systems

Guaranteeing security and preservation of critical state databases of Estonia

Year Published: 2018

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: System security, critical databases

Overview of information technology expenditure and investments in Ministries and their authorities

Year Published: 2019

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: Financing of IT sector

Management of software development projects in public sector

Year Published: 2019

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: Software development in public sector

Administration and reliability of X-Road

Year Published: 2021

Language: Report in Estonian, summary in English

Sector: Public Administration

Issue: secure data exchange layer for information systems

Is Cybercrime Combated Effectively

Year Published: 2020

Language: English

Sector: Defense

Issue: Cyber crimes

Assessment whether existing investigation and preventive cybercrime activities ensure a safe environment for the public in the cyberspace.

Assessment whether existing investigation and preventive cybercrime activities ensure a safe environment for the public in the cyberspace.

Smart Tax Administration system

Year Published: 2019

Language: English

Sector: Tax Administration

Issue: Achievement of objectives

Assessment whether solutions developed (under development) will ensure that the objectives of smart tax administration system (iMAS) are achieved.

Assessment whether solutions developed (under development) will ensure that the objectives of smart tax administration system (iMAS) are achieved.

Management of Critical State Information Resources

Year Published: 2018

Language: English

Sector: Public Administration

Issue: General Controls

Assessment of general control and maturity of IT governance/management in 12 public sector organisations, focusing at strategic planning;information architecture; IT risk management; change management
Read More...

Assessment of general control and maturity of IT governance/management in 12 public sector organisations, focusing at strategic planning;information architecture; IT risk management; change management; assurance of uninterrupted services; system security; data management; monitoring and evaluation of IT activities; assurance.
Read Less...

Creation of an electronic health system

Year Published: 2017

Language: English

Sector: Health

Issue: Achievement of objectives

Evaluation whether the goals set for the creation of the e-health system are achieved and whether conditions are met to receive quality services. This is the 3-rd IT audit related to e-health system (
Read More...

Evaluation whether the goals set for the creation of the e-health system are achieved and whether conditions are met to receive quality services. This is the 3-rd IT audit related to e-health system (previous audits in 2008, 2011).
Read Less...

Development of the State Electronic Communications Infrastructure

Year Published: 2017

Language: English

Sector: Communication

Issue: Infrastructure

Evaluation of state-controlled model of electronic communications infrastructure (networks, services, pricing , security).

Evaluation of state-controlled model of electronic communications infrastructure (networks, services, pricing , security).

Management of Information Resources in the Ministry of the Interior

Year Published: 2016

Language: English

Sector: Internal Affairs

Issue: General Controls

Assessment of general controls of Information Systems at the Ministry of Interior, in particular - planning and organisation, monitoring, assessment and coordination. Maturity assessment of key gover
Read More...

Assessment of general controls of Information Systems at the Ministry of Interior, in particular - planning and organisation, monitoring, assessment and coordination. Maturity assessment of key governance/ management processes.
Read Less...

Whether Disclosure of the Public Sector Data is Ensured

Year Published: 2016

Language: English

Sector: Public Administration

Issue: Open data

Aim of audit was to assess whether the public data has been disclosed to the public and business : * is data disclosure policy is efficiently shaped and implemented? * is legal regulation of data di
Read More...

Aim of audit was to assess whether the public data has been disclosed to the public and business : * is data disclosure policy is efficiently shaped and implemented? * is legal regulation of data disclosure sufficient? * was an appropriate technological environment created for data disclosure? * are the public sector institutions ready to disclose their data?
Read Less...

Production of biometric identity documents

Year Published: 2015

Language: English

Sector: Internal Affairs

Issue: data security

The goal of the international audit (together with SAIs of Belgium, Latvia, Lithuania, Norway, Portugal and Switzerland) was to evaluate management and control of production of personal identificatio
Read More...

The goal of the international audit (together with SAIs of Belgium, Latvia, Lithuania, Norway, Portugal and Switzerland) was to evaluate management and control of production of personal identification documents - whether the document production process in Lithuania is appropriate and ensure that these documents are reliable and secure.
Read Less...

Control procedure of electronic commerce

Year Published: 2015

Language: English

Sector: Public Administration

Issue: Control procedures

Assessment organisation of e-commerce control procedures and provide insights, which would help to improve e-commerce control measures (for example, control of VAT, received for telecommunications, ra
Read More...

Assessment organisation of e-commerce control procedures and provide insights, which would help to improve e-commerce control measures (for example, control of VAT, received for telecommunications, radio and television broadcasting and electronic services)
Read Less...

Management of Police Information Resources

Year Published: 2015

Language: English

Sector: Public Administration

Issue: Information resources

The audit focused on the activities and actions of the Police Department; key issues - startegic planning, information architecture, data security, key project controls.

The audit focused on the activities and actions of the Police Department; key issues - startegic planning, information architecture, data security, key project controls.

Environment of cyber security in Lithuania

Year Published: 2015

Language: English

Sector: Public Administration

Issue: Cybersecurity

Assessment whether cyber security is being ensured in Lithuania : (1) at central level - whether an effective cyber security system has been set up; (2) at institutional level - whether cyber security
Read More...

Assessment whether cyber security is being ensured in Lithuania : (1) at central level - whether an effective cyber security system has been set up; (2) at institutional level - whether cyber security is ensured in public entities.
Read Less...

Implementation of Single Window e-services

Year Published: 2014

Language: English

Sector: Public Administration

Issue: e-services

Assessment of efficiency of the application of the principle of single window by transferring the public and administrative services into the electronic space and analysis of provision of e-services o
Read More...

Assessment of efficiency of the application of the principle of single window by transferring the public and administrative services into the electronic space and analysis of provision of e-services on both state and municipal levels.
Read Less...

Management of the State Information Resources

Year Published: 2013

Language: English

Sector: Internal Affairs

Issue: General Controls

Assessment of effectiveness of the governance of the state information resources - suitability of the chosen governance model and rationality of the use of the state budget.

Assessment of effectiveness of the governance of the state information resources - suitability of the chosen governance model and rationality of the use of the state budget.

General and Creation Control of Information Systems of the Ministry of Foreign Affairs

Year Published: 2013

Language: English

Sector: Foreign Affairs

Issue: General Controls

Assessment of general controls of Information Systems at the Ministry of Foreign Affairs. Maturity assessment of key governance/ management processes of Ministry of Foreign Affairs Information Syste
Read More...

Assessment of general controls of Information Systems at the Ministry of Foreign Affairs. Maturity assessment of key governance/ management processes of Ministry of Foreign Affairs Information Systems.
Read Less...

Protection of automatically processed personal data

Year Published: 2013

Language: English

Sector: Internal Affairs

Issue: data security

Audit at the State Data Protection Inspectorate (SDPI) was aimed to assess efficiency of the protection and supervision of automatically processed personal data.

Audit at the State Data Protection Inspectorate (SDPI) was aimed to assess efficiency of the protection and supervision of automatically processed personal data.

Management of information resources of the Ministry of Agriculture

Year Published: 2013

Language: English

Sector: Agriculture

Issue: General Controls

Assessment of general controls of Information Systems at the Ministry of Agriculture. Maturity assessment of key governance/ management processes of Ministry of Agriculture Information Systems.

Assessment of general controls of Information Systems at the Ministry of Agriculture. Maturity assessment of key governance/ management processes of Ministry of Agriculture Information Systems.

General and Creation Control of Information Systems of the Ministry of Finances

Year Published: 2012

Language: English

Sector: Public Finance

Issue: General Controls

Assessment of general controls of Information Systems at the Ministry of Finance. Assessment of development of VSAKIS (Public sector accounting and reports consolidation information system). Maturity
Read More...

Assessment of general controls of Information Systems at the Ministry of Finance. Assessment of development of VSAKIS (Public sector accounting and reports consolidation information system). Maturity assessment of key governance/ management processes of Ministry of Finance Information Systems.
Read Less...

Electronic Ticketing in Public Transport of Lithuania

Year Published: 2011

Language: English

Sector: Transportation

Issue: Information System development, Integration

Development of Electronic ticketing (e-ticketing) in public transport of Lithuania with a view to assess the effectiveness of the development and integration of e-ticketing systems.

Development of Electronic ticketing (e-ticketing) in public transport of Lithuania with a view to assess the effectiveness of the development and integration of e-ticketing systems.

Development of Electronic Health Information System and Implementation of Audit Recommendations

Year Published: 2011

Language: Lithuanian

Sector: Health

Issue: Information System development

Results of the development of the National Electronic Health System (NESS). Monitoring the implementation of previous audit recommendations.

Results of the development of the National Electronic Health System (NESS). Monitoring the implementation of previous audit recommendations.

Integration and Reform of Information Systems of Education and Studies Bodies and Organizations in Lithuania

Year Published: 2010

Language: Lithuanian

Sector: Education

Issue: Integration

Integration and transformation of information systems of Lithuanian science and studies and organizations - development and using of LieMSIS.

Integration and transformation of information systems of Lithuanian science and studies and organizations - development and using of LieMSIS.

Information Systems Control in the State Tax Inspectorate

Year Published: 2010

Language: Lithuanian

Sector: Tax Administration

Issue: General Controls

Assessment of Information Systems general controls at the State Tax Inspectorate. Assessment of development of the Tax Accounting Information System (MAIS). Maturity assessment of key governance/ mana
Read More...

Assessment of Information Systems general controls at the State Tax Inspectorate. Assessment of development of the Tax Accounting Information System (MAIS). Maturity assessment of key governance/ management processes.
Read Less...

Use of Certificates of Civil Servants in Electronic Space

Year Published: 2010

Language: Lithuanian

Sector: Public Administration

Issue: Legality of data exchange, data security

Administration of civil servants' certificates and legality of data exchange. Supervision of certification service providers and ensuring data security. Adaptation of public and administrative service
Read More...

Administration of civil servants' certificates and legality of data exchange. Supervision of certification service providers and ensuring data security. Adaptation of public and administrative services for the use of certificates in the electronic space.
Read Less...

Central Electoral Commission Information Systems Control

Year Published: 2009

Language: English

Sector: Public Administration

Issue: General Controls

Assessment of Information Systems general controls at the Central Electoral Commission (CEC). Maturity assessment of key governance/ management processes.

Assessment of Information Systems general controls at the Central Electoral Commission (CEC). Maturity assessment of key governance/ management processes.

General Control assessment of Information Systems in Public Entity Centre of Registers

Year Published: 2009

Language: Lithuanian

Sector: Internal Affairs

Issue: General Controls

Assessment of Information Systems general controls at state enterprise "Centre of Registers". Assessment of development of the Public electronic service for real estate transactions (NETSVEP). Maturit
Read More...

Assessment of Information Systems general controls at state enterprise "Centre of Registers". Assessment of development of the Public electronic service for real estate transactions (NETSVEP). Maturity assessment of key governance/ management processes.
Read Less...

Assessment of general controls of information systems in Lithuanian Geological Survey under the Ministry of Environment

Year Published: 2009

Language: Lithuanian

Sector: Environment

Issue: General Controls

Assessment of general controls of Information Systems at Lithuanian Geological Survey under the Ministry of Environment. Maturity assessment of key governance/ management processes.

Assessment of general controls of Information Systems at Lithuanian Geological Survey under the Ministry of Environment. Maturity assessment of key governance/ management processes.

Assessment of General Control of Information Systems at the State Road Transport Inspectorate under the Ministry of Transport and Communications

Year Published: 2009

Language: Lithuanian

Sector: Transportation

Issue: General Controls

Assessment of Information Systems general controls at the State Road Transport Inspectorate under the Ministry of Transport and Communications. Maturity assessment of key governance/ management proces
Read More...

Assessment of Information Systems general controls at the State Road Transport Inspectorate under the Ministry of Transport and Communications. Maturity assessment of key governance/ management processes.
Read Less...

Assessment of General Control of the Information Systems in the Office of the Seimas

Year Published: 2009

Language: Lithuanian

Sector: Public Administration

Issue: General Controls

Assessment of Information Systems general controls at the Office of the Seimas (the Parliament). Maturity assessment of key governance/ management processes.

Assessment of Information Systems general controls at the Office of the Seimas (the Parliament). Maturity assessment of key governance/ management processes.

Strategic Information Security

Year Published: 2009

Language: Lithuanian

Sector: National Security

Issue: Information security

Assessment of Electronic Information Security at the Crisis Management Center under the Ministry of National Defense of the Republic of Lithuania. Monitoring security of strategic electronic informati
Read More...

Assessment of Electronic Information Security at the Crisis Management Center under the Ministry of National Defense of the Republic of Lithuania. Monitoring security of strategic electronic information, identification, prevention and elimination of threats and vulnerabilities.
Read Less...

Evaluation of Information Systems General Control in the State Service for Protected Areas

Year Published: 2008

Language: Lithuanian

Sector: Environment

Issue: General Controls

Assessment of general controls of Information Systems at the State Service for Protected Areas. Management of Cadastre of Protected Areas and maturity assessment of key governance/ management processe
Read More...

Assessment of general controls of Information Systems at the State Service for Protected Areas. Management of Cadastre of Protected Areas and maturity assessment of key governance/ management processes.
Read Less...

Evaluation of information system in the State Social Insurance Board under the Ministry of Social Security and Labour

Year Published: 2008

Language: Lithuanian

Sector: Social Security

Issue: General Controls

Assessment of general controls of Information Systems at the State Social Insurance Board under the Ministry of Social Security and Labour and maturity assessment of key governance/ management process
Read More...

Assessment of general controls of Information Systems at the State Social Insurance Board under the Ministry of Social Security and Labour and maturity assessment of key governance/ management processes.
Read Less...

Audit of Development of Electronic Health Information System

Year Published: 2008

Language: Lithuanian

Sector: Health

Issue: General Controls

Assessment of general controls of Health information system at the Ministry of Health. Maturity assessment of key governance/ management processes and also covers assessment of development of Electro
Read More...

Assessment of general controls of Health information system at the Ministry of Health. Maturity assessment of key governance/ management processes and also covers assessment of development of Electronic Health Information System.
Read Less...

Evaluation of Information Systems General Control in the Publlic Procurement Office under the Government of the Republic of Lithuania

Year Published: 2008

Language: Lithuanian

Sector: Public Procurement

Issue: General Controls

Assessment of Information Systems general controls at the Publlic Procurement Office under the Government of the Republic of Lithuania. Maturity assessment of key governance/ management processes.

Assessment of Information Systems general controls at the Publlic Procurement Office under the Government of the Republic of Lithuania. Maturity assessment of key governance/ management processes.

Management of Information Society Development Projects Financed by European Union Structural Funds

Year Published: 2008

Language: Lithuanian

Sector: Public Finance

Issue:

Assessment of selection, development, monitoring and assessment of Information Society Development Projects financed from European Union Structural Funds.

Assessment of selection, development, monitoring and assessment of Information Society Development Projects financed from European Union Structural Funds.

Evaluation of Information Systems General Control of AB Rytų skirstomieji tinklai

Year Published: 2007

Language: Lithuanian

Sector: Energy

Issue: General Controls

Assessment of general controls of information systems at the joint stock company "Eastern distribution Networks". Maturity assessment of key governance/ management processes.

Assessment of general controls of information systems at the joint stock company "Eastern distribution Networks". Maturity assessment of key governance/ management processes.

Evaluation of the Information Systems General Control of the Ministry of the Interior of the Republic of Lithuania

Year Published: 2007

Language: Lithuanian

Sector: Internal Affairs

Issue: General Controls

Assessment of general controls of Information Systems at the Ministry of Internal Affairs . Maturity assessment of governance/ management processes. Assessment of development controls of Schengen IS.

Assessment of general controls of Information Systems at the Ministry of Internal Affairs . Maturity assessment of governance/ management processes. Assessment of development controls of Schengen IS.

Evaluation of the General Control of the information system of the Customs Department under the Ministry of Finance of the Republic of Lithuania

Year Published: 2007

Language: Lithuanian

Sector: Internal Affairs

Issue: General and application controls

Assessment of general controls of information systems of Customs Department (under the Ministry of Finance); assessment of application controls of MAKIS (Tax Accounting and Control IS).

Assessment of general controls of information systems of Customs Department (under the Ministry of Finance); assessment of application controls of MAKIS (Tax Accounting and Control IS).

Management of Information Systems of Public Institutions in the Context of E-Governance

Year Published: 2007

Language: Lithuanian

Sector: Public Administration

Issue: Strategy, investment and project management, risk and security management, lifecycle of IS

Assessment of key processes of IT governance/management at the state level

Assessment of key processes of IT governance/management at the state level

Assessment of the Public IT Model of the Federal Public Administration

Year Published: 2019

Language: Protuguese

Sector: Public Administration

Issue: IT Policies and Structures

IT Policies and Structures of the Federal Public Administration

IT Policies and Structures of the Federal Public Administration

Inspection of information usage when managing public policies

Year Published: 2019

Language: Protuguese

Sector: Public Administration

Issue: Data usage

Information usage when managing public policies

Information usage when managing public policies

Assessment of digital technology usage when providing public services

Year Published: 2017

Language: Protuguese

Sector: Public Administration

Issue: Digital Government

Use of eGovernance for providing public services

Use of eGovernance for providing public services

IT Governance Survey - Round 2016

Year Published: 2017

Language: Protuguese

Sector: Public Administration

Issue: IT Governance

Information Technology Governance

Information Technology Governance

Audit on the Federal Government's open data policy

Year Published: 2016

Language: Protuguese

Sector: Public Administration

Issue: Open data

Federal Government's open data policy

Federal Government's open data policy

Audit on Data Openness and public sector transparency in Education

Year Published: 2015

Language: Protuguese

Sector: Education

Issue: Open data

Data Openness and public sector transparency in Education

Data Openness and public sector transparency in Education

Audit on the e-Government services provided by Social Security

Year Published: 2015

Language: Protuguese

Sector: Social Security

Issue: e-services

e-Government services provided by Social Security

e-Government services provided by Social Security

Audit Survey on Open Data and Big Data

Year Published: 2014

Language: Protuguese

Sector: Public Administration

Issue: Open data

Open Data and Big Data

Open Data and Big Data

Inspection of Centralized Guidance on IT Governance: Results and Risks

Year Published: 2013

Language: Protuguese

Sector: Public Administration

Issue: IT Governance

Centralized Guidance on IT Governance

Centralized Guidance on IT Governance

IT trends survey: agile methods within the Federal Public Administration

Year Published: 2013

Language: Protuguese

Sector: Public Administration

Issue: System Development Methodology

Agile methods within the Federal Public Administration

Agile methods within the Federal Public Administration

Audit on the Management System of Government Agreements and Transfer Contracts

Year Published: 2013

Language: Protuguese

Sector: Contract Management

Issue:

Management System of Government Agreements and Transfer Contracts

Management System of Government Agreements and Transfer Contracts

Audit on the National Transplant System

Year Published: 2012

Language: Protuguese

Sector: Health

Issue:

National Transplant system

National Transplant system

Audit Survey on the Management Systems of State-Owned Companies

Year Published: 2010

Language: Protuguese

Sector: Information Systems

Issue: IT systems

Management Systems of State-Owned Companies

Management Systems of State-Owned Companies

Audit on the Integrated System of Tax Debt

Year Published: 2010

Language: Protuguese

Sector: Finance, Tax

Issue: Integrated System of Tax Debt

Integrated System of Tax Debt

Integrated System of Tax Debt

Inspection on Information security within the National Government Gazette

Year Published: 2009

Language: Protuguese

Sector: National Government Gazette

Issue: Information security

Information Security within the National Government Gazette

Information Security within the National Government Gazette

Audit on the Computerized System of Death Control

Year Published: 2009

Language: Protuguese

Sector: Social Security and Health

Issue: Computerized System of Death Control

Computerized System of Death Control

Computerized System of Death Control

Audit on Air Traffic Control System - X 4000

Year Published: 2008

Language: Protuguese

Sector: Transportation

Issue: Air Traffic Control System

Air Traffic Control System

Air Traffic Control System

Control evaluation of salary loans within the Integrated Personnel Management System

Year Published: 2007

Language: Protuguese

Sector: Personnel management

Issue: Salary loan module

Salary loan module of the Integrated Personnel Management System

Salary loan module of the Integrated Personnel Management System

Survey on IT Governance within the Federal Public Administration

Year Published: 2014

Language: Protuguese

Sector: Public Administration

Issue: IT Governance

IT Governance in Public Administration

IT Governance in Public Administration

General Control of State Information Systems

Year Published: 2006

Language: Lithuanian

Sector: Information Systems

Issue: Strategy, investment and project management, risk and security management, lifecycle of IS

Assessment of key processes of IT governance/management at the state level (strategy, investment and project management, risk and security management, lifecycle of IS)

Assessment of key processes of IT governance/management at the state level (strategy, investment and project management, risk and security management, lifecycle of IS)

Cyber Security Strategies of Non-Corporate Commonwealth Entities

Year Published: 2021

Language: English

Sector: Governance

Issue: Cyber Security Strategies

The Australian Government has identified malicious cyber activity as one of the most significant threats affecting government entities, businesses and individuals. Previous ANAO audits have identified
Read More...

The Australian Government has identified malicious cyber activity as one of the most significant threats affecting government entities, businesses and individuals. Previous ANAO audits have identified low levels of compliance with mandatory cyber security requirements under the PSPF. The JCPAA has expressed its concern about entity implementation of mandatory cyber security requirements.
Read Less...

Audits of the Financial Statements of Australian Government Entities for the Period Ended 30 June 2020

Year Published: 2020

Language: English

Sector: Public Finance

Issue: IT Controls and Cyber Security Risks

This report complements the Interim Report on Key Financial Controls of Major Entities financial statement audit report published in May 2020. It provides a summary of the final results of the audits
Read More...

This report complements the Interim Report on Key Financial Controls of Major Entities financial statement audit report published in May 2020. It provides a summary of the final results of the audits of the Consolidated Financial Statements for the Australian Government and the financial statements of Australian Government entities for the period ended 30 June 2020.
Read Less...

Interim Report on Key Financial Controls of Major Entities

Year Published: 2021

Language: English

Sector: Key Internal Controls

Issue: Safeguarding financial information from cyber threats

Focuses on the results of the interim audits, including an assessment of entities’ key internal controls, supporting the 2020–21 financial statements audits. This report examines 25 entities, incl
Read More...

Focuses on the results of the interim audits, including an assessment of entities’ key internal controls, supporting the 2020–21 financial statements audits. This report examines 25 entities, including all departments of state and a number of major Australian government entities. The entities included in the report are selected on the basis of their contribution to the income, expenses, assets and liabilities of the 2019–20 Consolidated Financial Statements.
Read Less...

General Control of Information Systems of the Ministry of Finance of the Republic of Lithuania

Year Published: 2006

Language: Lithuanian

Sector: Public Fund

Issue: General Control, Data Security and Integrity, Governance and management of processes

Control of Computerised Information Management and Supervision System of the European Union Structural Funds and European Union Cohesion Fund

Control of Computerised Information Management and Supervision System of the European Union Structural Funds and European Union Cohesion Fund

National Institute of Statistics of Los Lagos Audit of Information and Communication Technologies

Year Published: 2019

Language: Spanish

Sector: Economy

Issue:

{:en}The purpose of the audit was to carry out an audit of the Information and Communication Technologies macroprocess, at the National Statistics Institute of the Los Lagos Region, hereinafter INE of
Read More...

{:en}The purpose of the audit was to carry out an audit of the Information and Communication Technologies macroprocess, at the National Statistics Institute of the Los Lagos Region, hereinafter INE of the Los Lagos Region, in order to review the infrastructure of the information technologies, computer systems and their respective contracts, considering aspects related to the licenses of the software in use and its ownership; as well as compliance with the control policies, rules, practices and procedures in the period from January 1 to June 30, 2019.
Read Less...

Coquimbo regional government audit of information technology macroprocess

Year Published: 2020

Language: Spanish

Sector: Regiona Government

Issue:

The purpose of the audit was to carry out an audit of the controls related to the systems based on IT associated with the institutional management of the Regional Government of Coquimbo, including tho
Read More...

The purpose of the audit was to carry out an audit of the controls related to the systems based on IT associated with the institutional management of the Regional Government of Coquimbo, including those activities of a manual or non-automated type, that are carried out in the environment of such programs, as well as, the review of the contracts that give rise to them and verify the observance of the current regulations that govern the matter, especially, what is established in the decrees N°s. 83, of 2004, 93 of 2006, both from the Ministry General Secretariat of the Presidency, and decree No. 14, 2014, from the Ministry of Economy, Development and Tourism, regarding technical standards for unsolicited mass electronic messages and electronic sites and open web platforms, respectively. All of the above, in accordance with the aforementioned law No. 10,336.
Read Less...

University of La Serena on the macroprocess of IT

Year Published: 2019

Language: Spanish

Sector: Education

Issue:

The purpose of the audit was to carry out an audit of the controls related to the systems based on information technology, IT, associated with institutional management, including those manual or non-a
Read More...

The purpose of the audit was to carry out an audit of the controls related to the systems based on information technology, IT, associated with institutional management, including those manual or non-automated activities that are carried out in the environment of such programs, such as likewise, the review of the contracts that give rise to them and verify the observance of the current regulations that govern the matter, especially, that established in the decrees N ° s. 83, of 2004, 93 of 2006, both from the Ministry General Secretariat of the Presidency, and decree No. 14, 2014, from the Ministry of Economy, Development and Tourism, regarding technical standards for unsolicited mass electronic messages and electronic sites and open web platforms, respectively.
Read Less...

Municipality of Vallenar - Audit to Information Technologies

Year Published: 2019

Language: Spanish

Sector: Municipalities

Issue:

{:en}The purpose of the audit was to verify the IT infrastructure, computer systems and their respective contracts, considering the aspects related to the software licenses in use and their ownership
Read More...

{:en}The purpose of the audit was to verify the IT infrastructure, computer systems and their respective contracts, considering the aspects related to the software licenses in use and their ownership and the compliance with the control policies, rules, practices and procedures, in the period from January 1 to December 31, 2018. In addition, Compliance with IT-related regulations was evaluated, in accordance with the provisions of Decree No. 83 of 2004 of the Ministry of the General Secretariat of the Presidency, which approves the Technical Standard for the State Administration Bodies on Security and Confidentiality of Electronic Documents, and the Chilean standard NCh-ISO 27.002, of 2009, on Information Security, of the National Institute for Standardization.
Read Less...

Municipality of Iquique on control aspects in information technologies

Year Published: 2019

Language: Spanish

Sector: Municipalities

Issue:

The audit had the purpose of verifying control and security aspects related to Information Technologies (IT) in the Municipality of Iquique, as well as the review of expenses related to some contracts
Read More...

The audit had the purpose of verifying control and security aspects related to Information Technologies (IT) in the Municipality of Iquique, as well as the review of expenses related to some contracts corresponding to technological services, in the period between 1 January to December 31, 2018.
Read Less...

National Fisheries And Aquaculture Service Audit Of Information And Communication Technologies

Year Published: 2019

Language: Spanish

Sector: Economy

Issue:

{:en}The purpose of the audit was to carry out an audit of the macroprocess of Information and Communication Technologies (ICTs) at the National Fisheries Service of the Los Lagos Region, with the aim
Read More...

{:en}The purpose of the audit was to carry out an audit of the macroprocess of Information and Communication Technologies (ICTs) at the National Fisheries Service of the Los Lagos Region, with the aim of reviewing the information technology infrastructure, computer systems and their respective contracts, considering the aspects related to the licenses of the software in use and its ownership; as well as compliance with control policies, standards, practices and procedures, in the period from January 1 to June 30, 2019. Likewise, compliance with the regulations related to ICTs was evaluated, in accordance with the provisions of Decree No. 83, of 2004, of the Ministry General Secretariat of the Presidency, which approves Technical Standard for the Organs of the State Administration on Security and Confidentiality of Electronic Documents.{:}{:es}La fiscalización tuvo por objeto, efectuar una auditoría al macroproceso de tecnologías de la información y comunicación, en el Servicio Nacional de Pesca de la Región de Los Lagos, con la finalidad de revisar la infraestructura de tecnologías de la información, los sistemas informáticos y sus respectivos contratos, considerando los aspectos relacionados con las licencias de los software en uso y su propiedad; así como el cumplimiento de las políticas, normas, prácticas y procedimientos de control, en el período comprendido entre el 1 de enero y el 30 de junio de 2019. Asimismo, se evaluó el cumplimiento de la normativa relacionada con las TIC, de conformidad con lo dispuesto en el decreto No 83, de 2004, del Ministerio Secretaría General de la Presidencia, que Aprueba Norma Técnica para los Órganos de la Administración del Estado Sobre Seguridad y Confidencialidad de los Documentos Electrónicos.{:}
Read Less...

Valparaíso legal medical service on auditing computer controls

Year Published: 2019

Language: Spanish

Sector: Justice

Issue:

The purpose of the audit was to carry out an audit of the computer systems administered by the Regional Directorate of the SML, between January 1 and June 30, 2019. The purpose of the review was to ve
Read More...

The purpose of the audit was to carry out an audit of the computer systems administered by the Regional Directorate of the SML, between January 1 and June 30, 2019. The purpose of the review was to verify the aspects related to the provision of information , the policies, norms, practices and control procedures that emanate from said processes. Also, verify its reliability, security, integrity and availability of data, such as the interoperability of systems.
Read Less...

Santo Tomás de Limache Hospital on computer controls audit

Year Published: 2019

Language: Spanish

Sector: Health

Issue:

The purpose of the audit was to carry out an audit of the computer systems implemented by the Santo Tomás de Limache Hospital (HST), between January 1 and October 31, 2019. The purpose of the review
Read More...

The purpose of the audit was to carry out an audit of the computer systems implemented by the Santo Tomás de Limache Hospital (HST), between January 1 and October 31, 2019. The purpose of the review was to verify the aspects related to the provision of information, policies, standards, practices and control procedures that emanate from said processes. Also, verify its reliability, security, integrity and availability of data, such as the interoperability of systems.
Read Less...

Municipality of Porvenir Audit of institutional functions and procedures

Year Published: 2019

Language: Spanish

Sector: Municipalities

Issue:

The purpose of the audit was to verify the information technology infrastructure, computer systems and their respective contracts, considering the aspects related to the licenses of the software in us
Read More...

The purpose of the audit was to verify the information technology infrastructure, computer systems and their respective contracts, considering the aspects related to the licenses of the software in use and its ownership and compliance with the policies, rules, practices and procedures of control, in the period from January 1 to November 30, 2018. All of the above, in accordance with Law No. 10,336, on Organization and Powers of the Office of the Comptroller General of the Republic.
Read Less...

Regional Directorate Of The National Institute Of Statistics Of Magellan And Chilean Antarctica-Audit Of The Information Technology Infrastructure, Computer Systems And Their Respective Contract-December 2019

Year Published: 2019

Language: Spanish

Sector: Economy

Issue:

The purpose of the audit was to verify the information technology infrastructure, computer systems and their respective contracts, at the Regional Directorate of the National Institute of Statistics o
Read More...

The purpose of the audit was to verify the information technology infrastructure, computer systems and their respective contracts, at the Regional Directorate of the National Institute of Statistics of Magallanes and Chilean Antarctica, considering the aspects related to software licenses in use and ownership and compliance with control policies, standards, practices and procedures, in the period from January 1 to December 31, 2018.
Read Less...

Strengthening Information Security Measures of Local Governments by the Government

Year Published: 2019

Language: English

Sector: Public Administration of Prefectures and municipalities

Issue: IT Security

In 2015, Japan Pension Service was faced with massive data leakage exposing 1.25 million cases of contributors or beneficiaries caused by a series of targeted attacks. In the aftermath, people’s con
Read More...

In 2015, Japan Pension Service was faced with massive data leakage exposing 1.25 million cases of contributors or beneficiaries caused by a series of targeted attacks. In the aftermath, people’s concern spread over the security of upcoming Social Security and Tax Number System. The Government urged local governments to upgrade security levels of computer systems so that people’s “My Numbers” (social security numbers) are secure. Subsidies were broadly distributed to prefectures and municipalities. SAI Japan audited prefectures and municipalities to examine if the security levels were enhanced effectively by the subsidies, and submitted the report to the Diet and the Cabinet in January 2020. This Paper will give a briefing on the findings of the audit report which are composed of 1) if two-factor authentication system and restriction on take-out of information work well; 2) if My Numbers are securely handled in a separated system; 3) if the common gateway offered to municipalities is effectively operated; and 4) if local governments are ready to maintain the enhanced information security level.
Read Less...

Information Security Measures of Japan Pension Service

Year Published: 2016

Language: English

Sector: Operation of Quasi governmental body

Issue: IT Security

Japan has national compulsory pension system with 67 million contributors and 40 million beneficiaries. The data of national pension is managed by Japan Pension Service (JPS), a quasi-governmental age
Read More...

Japan has national compulsory pension system with 67 million contributors and 40 million beneficiaries. The data of national pension is managed by Japan Pension Service (JPS), a quasi-governmental agency. The cyber incident triggered by a series of targeted attacks on JPS in 2015 undermined confidence in information security of Japanese pension system. This paper explains SAI Japan’s special audit report on 1) information security management and operations by JPS before the incident; 2) information security management after the incident; 3) negative impact on JPS’s operations in the aftermath of the incident; and 4) other findings.
Read Less...

Accounting and Budgetory Control System

Year Published: 2015

Language: English

Sector: Public Administration

Issue: Business Needs Identification, IT Security, Business Continuity Plan

DIRECTORATE GENERAL OF CIVIL AERONAUTICS - SYSTEMS AUDIT

Year Published: 2019

Language: Spanish

Sector: Air force

Issue:

{:en}The purpose of the audit was to carry out an examination of the Aeronautical Personnel Computer System, SlPA, and the Aeronautical Medical Computer System, SlMA, together with the computer contra
Read More...

{:en}The purpose of the audit was to carry out an examination of the Aeronautical Personnel Computer System, SlPA, and the Aeronautical Medical Computer System, SlMA, together with the computer contracts of the providers of said systems, and of the communications that support their operations, between 2 January and December 31, 2017. The purpose of the review was to verify the aspects related to the provision of information, the policies, standards, practices and control procedures that emanate from the processes of medical certification and health accreditation of aeronautical personnel, the granting and issuance of aeronautical licenses. Also, verify its reliability, security, integrity and availability of data, such as the interoperability of systems. In the same way, compliance with the regulations related to ICT was evaluated, in accordance with the provisions of Decrees No. 83, of 2004, of the Ministry General Secretariat of the Presidency, which approves the Technical Standard for the organs of the State Administration on Security and Confidentiality of Electronic Documents; and 181, of 2002, which Approves Regulation of Law No. 19,799, on Electronic-Documents, Electronic Signature and the certification of said Firm, of the then Ministry of Economy, Development and Reconstruction, current Ministry of Economy, Development and Tourism.{:}{:es}La fiscalización tuvo por objetivo practicar un examen al Sistema informático de Personal Aeronáutico, SlPA, y al Sistema informático Médico Aeronáutico, SlMA, junto con los contratos informáticos de los proveedores de dichos sistemas, y de las comunicaciones que sustentan sus operaciones, entre el 2 de enero y el 31 de diciembre de2017. La finalidad de la revisión fue constatar los aspectos relacionados con el suministro de información, las políticas, normas, prácticas y procedimientos de control que emanan de los procesos de certificación médica y acreditación de salud del personal aeronáutico, el otorgamiento y emisión de licencias aeronáuticas. Asimismo, verificar su confiabilidad, seguridad, integridad y disponibilidad de los datos, como la interoperabilidad de los sistemas. De igual manera se evaluó el cumplimiento de la normativa relacionada con las TIC, de conformidad con lo dispuesto en los decretos Nos 83, de 2004, del Ministerio Secretaría General de la Presidencia, que Aprueba Norma Técnica para los órganos de la Administración del Estado sobre Seguridad y Confidencialidad de los Documentos Electrónicos; y 181, de 2002, que Aprueba Reglamento de la Ley N° 19.799, sobre Documentos-Electrónicos, Firma Electrónica y la certificación de dicha Firma, del entonces Ministerio de Economía, Fomento y Reconstrucción, actual Ministerio de Economía, Fomento y Turismo.{:}
Read Less...

NATIONAL HEALTH FUND - SYSTEMS AUDIT

Year Published: 2019

Language: Spanish

Sector: Health

Issue:

{:en}The purpose of the audit was to carry out an examination of the computer systems for the sale of health care vouchers for the beneficiaries, both in person and via the web, whether they are medic
Read More...

{:en}The purpose of the audit was to carry out an examination of the computer systems for the sale of health care vouchers for the beneficiaries, both in person and via the web, whether they are medical consultations or procedures with a provider that is in agreement, through free choice, including the functionality of medical licenses; and computer contracts related to the management and disbursement of benefits by 'FONASA, for the period from January 2 to December 31, 2017. The purpose of the review was to verify the aspects related to the policies , norms, practices and control procedures that emanate from said processes. Also, verify the reliability, integrity and availability of the data, such as the interoperability of the systems. In the same order of ideas, the number of transactions carried out on the platform and the hours in which they are carried out were analyzed in the Integrated Insurance Information System. In addition, the falls reported by time and conditions of degradation, intermittency and unavailability of the systems were validated based on the technical reports of incident records for the years 2017 and 2018. Additionally, Compliance with the regulations related to ICT was evaluated, in accordance with the provisions of decrees NOS 83, of 2004, of the Ministry General Secretariat of the Presidency, which Approves Technical Standard for the organs of the State Administration on Security and Confidentiality of Electronic Documents; and 181, of 2002, which Approves Regulation of Law No. 19,799, on Electronic Documents, Electronic Signature and the Certification of said Firm, of the then Ministry of Economy, Development and Reconstruction, current Ministry of Economy, Development and Tourism.{:}{:es}La fiscalización tuvo por objetivo practicar un examen a los sistemas informáticos destinados a la venta de bonos de atención de salud para los beneficiarios, tanto presencial como vía web, sean éstas consultas o procedimientos médicos con un prestador que se encuentre en convenio, a través de libre elección, incluyendo la funcionalidad de licencias médicas; y contratos informáticos relacionados con la gestión y desembolsos de las prestaciones por parte del 'FONASA, para el período comprendido entre el 2 de enero y el 31 de diciembre de 2017. La finalidad de la revisión fue constatar los aspectos que se relacionan con las políticas, normas, prácticas y procedimientos de control que emanan de dichos procesos. Asimismo, verificar la confiabilidad, integridad y disponibilidad de los datos, como la interoperabilidad de los sistemas. En el mismo orden de ideas, se analizó en el Sistema de Información Integrado del Seguro, la cantidad de transacciones realizadas en la plataforma y el horario en que se efectúan. Además, se validaron las caídas reportadas por tiempo y condiciones de degradación, intermitencia e indisponibilidad de los sistemas 'en base a los informes técnicos de registros de incidencias de los años 2017 y 2018. Adicionalmente, se evaluó el Cumplimiento de la normativa relacionada con las TIC, de conformidad con lo dispuesto en los decretos NOS 83, de2004, del Ministerio Secretaría General de la Presidencia, que Aprueba Norma Técnica para los órganos de la Administración del Estado sobre Seguridad y Confidencialidad de los Documentos Electrónicos; y 181, de 2002, que Aprueba Reglamento de la Ley N° 19.799, sobre Documentos Electrónicos, Firma Electrónica y la Certificación de dicha Firma, del entonces Ministerio de Economía, Fomento y Reconstrucción, actual Ministerio de Economía, Fomento y Turismo.{:}
Read Less...

REGIONAL CUSTOMS DIRECTORATE OF IQUIQUE - SYSTEMS AUDIT

Year Published: 2019

Language: Spanish

Sector: Customs

Issue:

The purpose of the audit was to carry out an examination of the computer systems used in the processes of controlling the temporary admission granted to vehicles imported into free zones of extension
Read More...

The purpose of the audit was to carry out an examination of the computer systems used in the processes of controlling the temporary admission granted to vehicles imported into free zones of extension covered by the Pasavante-Pasavante System franchise; control of the entry and dispatch of goods to and from the Free Zone -Electronic Visa Service Systems, SVE, and Remote Visa, SVR-; control and supervision of the merchandise clearance procedure from the Iquique Terminal Internacional, Electronic Import Visa System, VEI; record of the background on the alerts of determined risks and the result of the inspection and gauging operation, Daily Management Form, during the period from January 1 to December 31, 2017.
Read Less...

Inspection of Information Technologies of the Municipality of Bulnes

Year Published: 2019

Language: Spanish

Sector: Municipalities

Issue:

The objective of the audit was to verify the information technology infrastructure, computer systems and their respective contracts in the Municipality of Bulnes, considering the aspects related to th
Read More...

The objective of the audit was to verify the information technology infrastructure, computer systems and their respective contracts in the Municipality of Bulnes, considering the aspects related to the licenses of the software in use and its ownership and compliance with the policies, regulations, control practices and procedures and verify the observance of current regulations governing the matter, especially, the provisions of Supreme Decrees No. s. 83 of 2004 and 93 of 2006, both from the Ministry General Secretariat of the Presidency, and decree No. 14, 2014, from the Ministry of Economy, Development and Tourism, regarding technical standards on unsolicited mass electronic messages and sites electronic and open web platforms, respectively.
Read Less...

Hospital Clínico de Magallanes Doctor Lautaro Navarro Avaria - Audit To The Infrastructure Of Information Technologies, Computer Systems And Their Respective Contracts

Year Published: 2019

Language: Spanish

Sector: Health

Issue:

{:en}The purpose of the audit was to verify the information technology infrastructure, computer systems and their respective contracts, at the Hospital Clínico de Magallanes Doctor Lautaro Navarro Av
Read More...

{:en}The purpose of the audit was to verify the information technology infrastructure, computer systems and their respective contracts, at the Hospital Clínico de Magallanes Doctor Lautaro Navarro Avaria, considering the aspects related to software licenses in use and their ownership and compliance. of the control policies, standards, practices and procedures, in the period from August 1, 2018 to July 31, 2019. All of the above, in accordance with Law No. 10,336, of the Office of the Comptroller General of the Republic.{:}{:es}La fiscalización tuvo por objeto, verificar la infraestructura de tecnología de la información, sistemas informáticos y sus respectivos contratos, en el Hospital Clínico de Magallanes Doctor Lautaro Navarro Avaria, considerando los aspectos relacionados con las licencias de software en uso y su propiedad y el cumplimiento de las políticas, normas, prácticas y procedimientos de control, en el período comprendido entre el 1 de agosto de 2018 y el 31 de julio de 2019. Todo lo anterior, en concordancia con la ley N° 10.336, de la Contraloría General de la República.{:}
Read Less...

Regional Directorate INE - Auditing The Macroprocess Of Information and Communication Technologies

Year Published: 2019

Language: Spanish

Sector: Economy

Issue:

The purpose of the audit was to carry out an audit on information technologies in the Regional Directorate of the National Institute of Statistics of Arica and Parinacota, verifying the infrastructure
Read More...

The purpose of the audit was to carry out an audit on information technologies in the Regional Directorate of the National Institute of Statistics of Arica and Parinacota, verifying the infrastructure of the systems, the safeguard and security, licenses of the computer programs in use, compliance of the control policies, standards, practices and procedures, for the period from January 1, 2018 to August 31, 2019.{:es}El objeto de la auditoría fue efectuar una fiscalización sobre tecnologías de la información en la Dirección Regional del Instituto Nacional de Estadísticas de Arica y Parinacota, verificando la infraestructura de los sistemas, el resguardo y seguridad, licencias de los programas computacionales en uso, el cumplimiento de las políticas, normas, prácticas y procedimientos de control, para el período comprendido entre el 1 de enero de 2018 y el 31 de agosto de 2019. {:}
Read Less...

Tarapacá University - Audit of the Macroprocess of Information and Communication Technologies

Year Published: 2019

Language: Spanish

Sector: Education

Issue:

The objective was to carry out an evaluation of the control that the UTA exercises over its operations and the safeguarding of the information that it maintains in the systems, between January 1 and D
Read More...

The objective was to carry out an evaluation of the control that the UTA exercises over its operations and the safeguarding of the information that it maintains in the systems, between January 1 and December 31, 2018, the technological infrastructure, the information systems, considering the related aspects with the licenses of the software in use, its ownership and the compliance with the policies, rules, practices and control procedures that emanate from said processes; and evaluate compliance with the regulations related to information and communication technologies, ICT, in accordance with the provisions of Decree No. 83 of 2004, of the General Secretariat of the Presidency.
Read Less...

Regional Directorate Social Welfare Institute Information Technology Audit

Year Published: 2019

Language: Spanish

Sector: Social welfare

Issue:

The purpose of the audit was to carry out an audit on information technologies at the Regional Directorate of the Institute of Social Security of Arica and Parinacota, IPS, verifying the information t
Read More...

The purpose of the audit was to carry out an audit on information technologies at the Regional Directorate of the Institute of Social Security of Arica and Parinacota, IPS, verifying the information technology infrastructure, systems, safeguard and security, licenses the software in use, compliance with the policies, standards, practices and control procedures both in the aforementioned Regional Directorate and in the social security centers of the communes of Arica and Putre, for the period from January 1, 2018 and August 31, 2019.
Read Less...

CARABINEROS DE CHILE - SYSTEMS AUDIT

Year Published: 2019

Language: Spanish

Sector: Security

Issue:

{:en}The purpose of the audit was to carry out an examination of the security of the computer platform, as well as the automation system for police units, called "Aupol Digital". Likewise, review t
Read More...

{:en}The purpose of the audit was to carry out an examination of the security of the computer platform, as well as the automation system for police units, called "Aupol Digital". Likewise, review the disbursements related to the "Acquisition and Development and Implementation of a Police Units Automation System" contract, hereinafter "Aupol2.0", during the period from January 1 to December 31, 2017. The review included verifying compliance with the supervisory functions of the procedures and operations carried out in that context, to verify that they comply with the provisions of the regulations that regulate the matter and the principles of control, efficiency and effectiveness. Likewise, compliance with the regulations related to the TlC was evaluated, in accordance with the provisions of Decrees No. 83, of 2004, of the Ministry of the General Secretariat of the Presidency, which Approves Technical Standard for the Organs of the State Administration on Security and Confidentiality of Electronic Documents; and 181, of 2002, which Approves Regulation of Law No. 19,799, on Electronic Documents, Electronic Signature and the Certification of said Firm, of the then Ministry of Economy, Development and Reconstruction, current Ministry of Economy, Development and Tourism.{:}{:es}La fiscalización tuvo por objetivo efectuar un examen a la seguridad de la plataforma computacional, así como al sistema de automatización de unidades policiales, denominado "Aupol Digital". Asimismo, revisar los desembolsos relacionados con el contrato de "Adquisición y Desarrollo e Implementación de un Sistema de Automatización de Unidades Policiales", en adelante "Aupol2.0", durante el período comprendido entre el1 de enero y 31 de diciembre de 2017. La revisión incluyó la verificación del cumplimiento de las funciones de supervisión de los procedimientos y operaciones que se realizan en dicho contexto, para comprobar que estos cumplan con lo dispuesto en las normativas que regulan la materia y los principios de control, eficiencia y eficacia. Asimismo, se evaluó el acatamiento de la normativa relacionada con las TlC, de conformidad con lo dispuesto en los decretos Nos 83, de 2004, del Ministerio Secretaría General de la Presidencia, que Aprueba Norma Técnica para los Órganos de la Administración del Estado sobre Seguridad y Confidencialidad de los Documentos Electrónicos; y 181, de 2002, que Aprueba Reglamento de la Ley N° 19.799, sobre Documentos Electrónicos, Firma Electrónica y la Certificación de dicha Firma, del entonces Ministerio de Economía, Fomento y Reconstrucción, actual Ministerio de Economía, Fomento y Turismo.{:}
Read Less...

UNDER SECRETARY OF SOCIAL EVALUATION - SYSTEMS AUDIT

Year Published: 2019

Language: Spanish

Sector: Social development

Issue:

{:en}The purpose of the audit was to review and evaluate aspects related to information security of those mechanisms and systems that capture, process and store the data managed by the Household Partn
Read More...

{:en}The purpose of the audit was to review and evaluate aspects related to information security of those mechanisms and systems that capture, process and store the data managed by the Household Partner Registry, in order to corroborate that said elements operate efficiently and ensure the integrity, confidentiality and availability of the information, during the period from January 1 to December 31, 2017. In addition, compliance with related regulations related to IT was evaluated, in accordance with the provisions of Decrees No. 83 of 2004 of the Ministry of the General Secretariat of the Presidency, which approves the Technical Standard for the State Administration Bodies on Security and Confidentiality of Electronic Documents; and 181, of 2002, which approves Regulation of Law No. 19,799, on Electronic Documents, Electronic Signature and the Certification of said Signature, of the then Ministry of Economy, Development and Reconstruction, current Ministry of Economy, Development and Tourism, as appropriate .{:}{:es}La fiscalización tuvo por finalidad la revisión y evaluación de aspectos relativos a la seguridad de la información de aquellos mecanismos y sistemas que capturan, procesan y almacenan los datos gestionados por el Registro Socia de Hogares, con el propósito de corroborar que dichos elementos operen eficientemente y aseguren la integridad, confidencialidad y disponibilidad de la información, durante el periodo comprendido entre el 1 de enero y el 31 de diciembre de 2017. Además, se evaluó el cumplimiento de la normativa relacionada relacionada con las TI, de conformidad con lo dispuesto en los decretos Nos 83, de 2004, del Ministerio Secretaría General de la Presidencia, que Aprueba Norma Técnica para los Órganos de la Administración del Estado sobre Seguridad y Confidencialidad de los Documentos Electrónicos; y 181, de 2002, que Aprueba Reglamento de la Ley N° 19.799, sobre Documentos Electrónicos, Firma Electrónica y la Certificación de dicha Firma, del entonces Ministerio de Economía, Fomento y Reconstrucción, actual Ministerio de Economía, Fomento y Turismo, según corresponda.{:}
Read Less...

DEPUTY SECRETARIAT FOR HOUSING AND URBANISM - SYSTEMS AUDIT

Year Published: 2019

Language: Spanish

Sector: Housing and urbanism

Issue:

{:en}The objective was to carry out an audit of the Integrated Subsidy System, called RUKAN 1, and the IT contracts related to the management and disbursement of benefits by the Undersecretariat for H
Read More...

{:en}The objective was to carry out an audit of the Integrated Subsidy System, called RUKAN 1, and the IT contracts related to the management and disbursement of benefits by the Undersecretariat for Housing and Urban Development, for the period between January 1 and December 31, 2017, in order to verify the security and integrity of the data associated with the housing subsidy delivery processes and the interoperability of the systems associated with them. In addition, what was stated by the former Undersecretary for Housing and Urban Development, Mr. lván Leonhardt Cárdenas, through official letter No. 62 of 2018, of that Undersecretariat, regarding possible breaches in the authorization of the J Boss BPM platform of Red Hat2 was considered. Compliance with ICT-related regulations was also evaluated, in accordance with the provisions of Decrees No. 5 83 of 2004 of the Ministry of the General Secretariat of the Presidency; and 181, of 2002, which approves Regulation of Law No. 1 9,799, on Electronic Documents, Electronic Signature and the Certification of said Signature.{:}{:es}El objetivo fue efectuar una auditoría al Sistema Integrado de Subsidios, denominado RUKAN 1, y a los contratos informáticos relacionados con la gestión y desembolsos de los beneficios por parte de la Subsecretaría de Vivienda y Urbanismo, para el período comprendido entre el 1 de enero y el 31 de diciembre de 2017, de manera de constatar la seguridad e integridad de los datos asociados a los procesos de entrega de los subsidios habitacionales y la interoperabilidad de los sistemas asociados a ellos. Además, se contempló lo manifestado por el ex Subsecretario de Vivienda y Urbanismo, señor lván Leonhardt Cárdenas, mediante oficio N o 62 de 2018, de esa Subsecretaría, sobre eventuales incumplimientos en la habilitación de la plataforma J Boss BPM de Red Hat2. También se evaluó el cumplimiento de la normativa relacionada con las TIC, de conformidad con lo d is puesto en los decretos N °5 83, de 2004, del Ministerio Secretaría General de la Presidencia; y 181, de 2002, que Aprueba Reglamento de la Ley No 1 9.799, sobre Documentos Electrónicos, Firma Electrónica y la Certificación de dicha Firma.{:}
Read Less...

MUNICIPALITY OF PROVIDENCE - SYSTEM AUDITS

Year Published: 2018

Language: Spanish

Sector: Municipalities

Issue:

The purpose of the audit was to carry out an audit of the computer systems and contracts for the processes of commercial patents and circulation permits, implemented by the Municipality of Providencia
Read More...

The purpose of the audit was to carry out an audit of the computer systems and contracts for the processes of commercial patents and circulation permits, implemented by the Municipality of Providencia, for the period from January 1 to December 31, 2017. In This process was considered administrative aspects; technicians linked to policies, standards and practices; and control procedures related to systems based on Information Technology, IT, including those manual or automated activities.{:es}La fiscalización tuvo por finalidad ejecutar una auditoría a los sistemas y contratos informáticos para los procesos de patentes comerciales y permisos de circulación, implementados por la Municipalidad de Providencia, para el período comprendido entre el 1 de enero y el 31 de diciembre de 2017. En dicho proceso se consideraron aspectos administrativos; técnicos vinculados con políticas, normas y prácticas; y procedimientos de control relacionados con los sistemas basados en las Tecnologías de la Información, TI , incluidas aquellas actividades de tipo manual o automatizado. {:}
Read Less...

GENERAL TREASURY OF THE REPUBLIC - SYSTEMS AUDIT

Year Published: 2019

Language: Spanish

Sector: Treasury

Issue:

{:en}The purpose of the audit was to carry out an examination of the implementation of the computer systems used in the process of managing the financial investments of the Public Treasury, in order t
Read More...

{:en}The purpose of the audit was to carry out an examination of the implementation of the computer systems used in the process of managing the financial investments of the Public Treasury, in order to manage investment portfolios of individuals, companies, investment funds, mutual funds, investment companies, insurance and other financial institutions, which correspond to the so-called Investment Administration Plans, PLANES, and Investment Portfolio Management, RealAlS, for the period from July 1, 2017 to September 30, 2018. Likewise, review the disbursements related to the contracts related to the provision, implementation and other associates, for the same period with respect to the RealAlS 'software and those made between 2015 and 2018, for the PLANES system, The examination included verifying compliance with the supervisory functions of the procedures and operations carried out in that context, to verify that they comply with the provisions; in the regulations that regulate the matter and the principles of control, efficiency and effectiveness, for the indicated period, in the General Treasury of the Republic. Also, evaluate compliance with the regulations related to the TlC, in accordance with the provisions of Decrees No. 83, of 2004, of the General Secretary Ministry of the Presidency, which Approves Technical Standard for the Organs of the State Administration, on Security and Confidentiality of Electronic Documents; and 181, of 2002, which approves Regulation of Law No. 19,799; on Electronic Documents, Electronic Signature and the Certification of said Signature, of the then Ministry of Economy, Development and Reconstruction, current. Ministry of Economy, Development and Tourism.{:}{:es}La fiscalización tuvo por finalidad practicar un examen a la implementación de los sistemas informáticos utilizados en el proceso de gestión de las inversiones financieras del Tesoro Público, a fin de administrar carteras de inversión de individuos, empresas, fondos de inversión, fondos mutuos, compañías de seguros y otras instituciones financieras, los que corresponden a los denominados Planes de Administración de Inversiones, PLANES, y Manejo de Carteras de Inversiones, RealAlS, para el período comprendido entre el 1 de julio de 2017 y el 30 de septiembre de 2018. Asimismo, revisar los .desembolsos relacionados con los contratos vinculados con la provisión, implementación y otros asociados, para igual periodo respecto del software RealAlS 'y los efectuados entre los años 2015 y 2018, para el sistema PLANES, El examen incluyó la verificación del cumplimiento de las funciones de supervisión de los procedimientos y operaciones que se realizan en dicho contexto, para comprobar que estos cumplan con lo dispuesto; en las normativas que regulan la materia y los principios de control, eficiencia y eficacia, para el período señalado, en la Tesorería General de la República., También, evaluar el cumplimiento de la normativa relacionada con las TlC, de conformidad con lo dispuesto en los decretos Nos 83, de 2004, del Ministerio Secretaria General de la Presidencia, que Aprueba Norma Técnica para los Órganos de la Administración del Estado, sobre Seguridad y Confidencialidad de los Documentos Electrónicos; y 181, de.2002, que Aprueba Reglamento de la Ley N° 19.799; sobre Documentos Electrónicos, Firma Electrónica y la Certificación de dicha Firma, del entonces Ministerio de Economía, Fomento y Reconstrucción, actual. Ministerio de Economía, Fomento y Turismo.{:}
Read Less...

Special examination of the processes of development, implementation and use of the Public Media Registration System (RPM) and Integrated Frequency Systems (SIF)

Year Published: 2019

Language: Spanish

Sector: Public Administration

Issue:

Special examination of the processes of development, implementation and use of the Public Registry System of RPM Media and Integrated SIF Frequency Systems, for the period from January 1, 2015 to Marc
Read More...

Special examination of the processes of development, implementation and use of the Public Registry System of RPM Media and Integrated SIF Frequency Systems, for the period from January 1, 2015 to March 31, 2019.
Read Less...

Special examination of pre-contractual, contractual, execution, settlement and use contracts 4300000799 and 4300001508, with their complementary and / or modifications, signed with Motorola

Year Published: 2019

Language: Spanish

Sector: Service - Telecommunications

Issue:

Special Examination of the pre-contractual, contractual, execution, liquidation and use of contracts 4300000799 and 4300001508, with their complementary and / or modifications, signed with Motorola So
Read More...

Special Examination of the pre-contractual, contractual, execution, liquidation and use of contracts 4300000799 and 4300001508, with their complementary and / or modifications, signed with Motorola Solutions del Ecuador SA, for the period between January 1, 2014 and December 31, 2018
Read Less...

‘Sajala’ Revenue Billing & Collection System in Bangalore Water Supply and Sewerage Board

Year Published: 2018

Language: English

Sector: Billing System

Issue: 1. Design of the system and mapping of business rules 2. Non-maintenance of Data dictionary 3. Information security issues like password management and audit trail 4. Weakness in input, processing control 5. Inconsistencies in data

Computerisation of Motor Vehicles Department

Year Published: 2016

Language: English

Sector: Transport

Issue: 1. Non-formulaton of IT Policy 2. Lack of Data integrity 3. Lack of monitoring and inadequate training 4. Physical Access to IT facilites and poor maintenance.

Audit of Pension Management System of the Directorate of Pension

Year Published: 2017

Language: English

Sector: Finance

Issue: 1. Inadequate Training of Users 2. Issues on Segreaton of duties and data access 3. Lack of BCP/DRP 4. System design deficiencies 5. Absence of input controls and validation checks led to incomplete data

Sikkim Integrated Financial Management System (SIFMS)(2017)

Year Published: 2018

Language: English

Sector: Finance

Issue: 1. Inadequate System Security & Control Mechanism 2. System Design deficiencies 3. Business rules not mapped

"Information Technology Audit on Works and Accounting Management Information System (WAMIS) (2017)"

Year Published: 2018

Language: English

Sector: Office Automation

Issue: 1. Partial implementatoin of WAMIS 2. Non-prepartion of Software Design Document 3. Deficiencies in Change Management process 4. Inefficient user management 5. Lack of Input and Validation controls 6. Deficient MIS module

Information System Audit on ‘Enhanced Advanced Billing, Accounting and Collection Utility System’ (eABACUS) in Kerala Water Authority(2017)

Year Published: 2018

Language: English

Sector: Office Automation

Issue: 1. Deficiencies in System Design 2. Bypassing Segregation of duties 3. Inaccurate mapping of business rules 4. Weak process controls in the system

Information Systems Audit on Computerisation of District Employment Offices

Year Published: 2016

Language: English

Sector: Office Automation

Issue: 1. Delay in completon of modules 2. non-establishment of Disaster Recovery site 3. lack of input and processing control 4. Discrepencies in Migration of Legacy data

Citizen Friendly Services in Transport Department (CFST)

Year Published: 2015

Language: English

Sector: Service

Issue: 1. Adhoc approach while Acquiring Hardware 2. Extra charges paid of data migration 3. Application functionalities deficiencies 4. non-mapping of business rules

Information Technology Audit of Drug Distribution Management System in Tamil Nadu Medical Services Corporation

Year Published: 2017

Language: English

Sector: Office Automation

Issue: 1. Deficiencies in Tender Processing system in the application 2. Inconsistencies in data 3. Incorrect mapping of business rules leading to excess procurement 4. Change Management Control and documention 5. Lack of third-party security assessment

Information Technology Audit on e-Procurement Project

Year Published: 2017

Language: English

Sector: Procurement

Issue: 1. non-mapping of Busines rules 2. Inadequate validation controls in the registration of users 3.Non-supply of Software Design Document, Functional Requirement Specifications Document, Back up policy and Disaster Recovery Plan

Information Technology Audit of SAP Enterprise Resource Planning System at Research Centre Imarat, Hyderabad

Year Published: 2015

Language: English

Sector: ERP System

Issue: 1. Weak logical access control 2. Lack of Segregation of duties 3. Inadequate BCP/DRP 4. Business rules not mapped into the system 5. Inaccurate and unreliable data

IT Audit on implementation of Oracle e-Business Suite (EBS) in Hindustan Copper Limited

Year Published: 2015

Language: English

Sector: ERP System

Issue: 1. Non-formulation of Information Security Policy 2. Inadequate Logical Access control 3. Fraudulent accounting activities

Indian Customs Electronic Data Interchange System (ICES 1.5)

Year Published: 2014

Language: English

Sector: Revenue

Issue: 1. Lack of IT Strategic Plan 2. Inadequate Training Policy 3. Lack of IS Security, User Password Management 4. Inadequate Change Management Policy

Working of Automation of Central Excise and Service Tax

Year Published: 2015

Language: English

Sector: Revenue

Issue: 1. Non-conforming to provision of IT Act 2. Inadequate Process designing 3. Duplicity of work (manually as well as through system)

IT audit of Computerisation of Salary Accounts

Year Published: 2016

Language: English

Sector: Office Automation

Issue: 1. Non-integratoin with Treasury software 2. Insufficient training leading to non-use of modules 3. lack of Logical Access contols, Password policy

IT audit of Computerisation of Treasury Operation System

Year Published: 2016

Language: English

Sector: Finance

Issue: 1. Non-prepartion of User requirement specification( URS) and Detailed Project Report (DPR) 2. Inadequate application controls 3. Lack of IT Security 4. Inadequate documentation

IT Audit of Hospital Management Information System and Stores Management Information System

Year Published: 2014

Language: English

Sector: Office Automation

Issue: 1. Non-running/Partial running of the application and non-functional modules 2. Inadequate logical access control and password policy 3. Lack of Physical Access Control 4. Improper application control

Online Management, Monitoring and Accounting System in PMGSY

Year Published: 2016

Language: English

Sector: Service

Issue: 1- Non-implemenation of modules 2. Tardy application of database 3. Lack of Application controls 4. Incorrect data entries and unreliable MIS

Information Technology Support System of Revenue Billing in Kanpur Electricity Supply Company Limited, Kanpur

Year Published: 2015

Language: English

Sector: Billing System

Issue: 1. Non-consitution of Steering Committee 2. Inadequate input controls and validation checks 3.lack of BCP/DRP 4. Incorrect mapping of business rules 5. Inadequate change/modification procedure

Information System Audit of “End-to-End Computerisation of Targeted Public Distribution System Operations

Year Published: 2017

Language: English

Sector: Service

Issue: 1. Delay in Project Planning, implementation 2. Deficiencies in digitization of database 3. Supply Chain management was not fully functional 4.Absence of system certification and security audit

Audit of E-Stamping and Property Evaluation and Registration Application ( PRERNA) software in Stamp and Registration Department

Year Published: 2016

Language: English

Sector: Revenue

Issue: 1. Unplanned and delayed implementation of scheme 2. Absence of SRS and non-execution of Software Development Agreement (SDA) 3.Business rules not mapped 4. Improper valuation of deeds. 5. IT Security and Internal Control mechanism

Information Technology Audit Report on Billing Systems in Northern Power Distribution Company of Telangana Limited (TSNPDCL)

Year Published: 2017

Language: English

Sector: Billing System

Issue: 1. lack of IT and Security Policies 2. Lack of interface between various applications 3. Non-migration of legacy data 4. Master table-Design error and incomplete data 5. Lack of Data Security

Information Technology Audit on implementation of e-Panchayat in Telangana

Year Published: 2016

Language: English

Sector: Public Administration

Issue: 1. Slow-implemenation and insufficient non-monitoring of project 2. Procurement of hardware and hiring of services at higher cost 3. Inconsistencies in database

Performance Audit on IT support to Panchayat Accounts including Accounting of Major Schemes

Year Published: 2016

Language: English

Sector: Public Administration

Issue: 1.Unutilization of Hardware procured 2. Incorrect mapping of business rules 3. Improper User Access and Role 4.Inadequate application control

Information Systems Audit on Computerised activities of five Municipal Corporations

Year Published: 2014

Language: English

Sector: Public Administration

Issue: 1. Incomplete and incorrect database 2. Acquisition/ Deficiencies in System Design 3. Ineffective linking of modules 4. Non-segregation of duties 5. Absence of Disaster Recovery Management System

Implementation of e-Governance Initiatives in Chennai Metropolitan Development Authority

Year Published: 2014

Language: English

Sector: Public Administration

Issue: 1. Non-integration of the System 2. Inadequate validation control 3. System Design Deficiencies

Performance Audit (IT) on Computerisation of ticketing system

Year Published: 2016

Language: English

Sector: Service

Issue: 1. Absence of IT Policy, IT Security Policy, Password Policy, Change Management Policy 2. Deficient Project monitoring and evaluation 3. System Design Deficiencies

Performance Audit (IT) on Computerisation of Commercial activities by Rajasthan State Ganganagar Sugar Mills Limited

Year Published: 2016

Language: English

Sector: Office Automation

Issue: 1. Lack of IT Policy and IT Security Policy 2. Deficiencies in System Design 3. lack in mapping of business rules 4.Deficient Input Controls and Validation Checks

Arogya Online in Sawai Man Singh Hospital, Jaipur

Year Published: 2017

Language: English

Sector: Office Automation

Issue: 1. Delay in Project Implementation 2. Inadequate input and output controls 3. Ineffective BCP/DRP

e-Procurement System in Public Works Department (Buildings and Roads)

Year Published: 2017

Language: English

Sector: Procurement

Issue:

e-Procurement System (2014)

Year Published: 2014

Language: English

Sector: Procurement

Issue: 1. non-impementation of modules of e-Procurement 2. Lack of Input control 3. weak access controls and lack of segregation of duties 4. no third party audit 5. Inadequate BCP/DRP

Human Resources Management System (HRMS)

Year Published: 2014

Language: English

Sector: Office Automation

Issue: 1. Data integrity issues 2. Ineffective application controls 3. Inadequate Mapping of business rules

Implementation of Bhagyalakshmi Scheme

Year Published: 2014

Language: English

Sector: Service

Issue: Incomplete data entries of beneficiaries, Delay in processing of applications

e-Procurement - Himachal Pradesh

Year Published: 2018

Language: English

Sector: Procurement

Issue:

GARVI

Year Published: 2016

Language: English

Sector: Revenue

Issue:

e-Procurement

Year Published: 2016

Language: English

Sector: Procurement

Issue:

IFMS (Integrated Financial Management System)

Year Published: 2017

Language: English

Sector: Finance

Issue:

WAMIS (Works and Accounts Management Information System)

Year Published: 2018

Language: English

Sector: Office Automation

Issue:

Mojini – Survey activities

Year Published: 2014

Language: English

Sector: Computerisation in Land Records

Issue:

CCTNS(Crime and Criminal Tracking Network System) - Bihar

Year Published: 2015

Language: English

Sector: Office Automation

Issue:

CCTNS(Crime and Criminal Tracking Network System) - UP

Year Published: 2016

Language: English

Sector: Office Automation

Issue:

IFMS (Integrated Financial Management System)

Year Published: 2016

Language: English

Sector: Finance

Issue:

Police IT 2000

Year Published: 2014

Language: English

Sector: Office Automation

Issue:

SAP ERP in MSPGCL

Year Published: 2017

Language: English

Sector: ERP System

Issue:

e Aushidhi(2015)

Year Published: 2015

Language: English

Sector: Office Automation

Issue:

e-Sishu maintained by Odisha Primary Education Programme Authority (OPEPA)(2014)

Year Published: 2014

Language: English

Sector: Education

Issue:

eRegistration System(2014)

Year Published: 2014

Language: English

Sector: Revenue

Issue:

Implementation of the Integrated Mines and Minerals Management System (i3MS)(2015)

Year Published: 2016

Language: English

Sector: Office Automation

Issue:

Implementation of Odisha Secretariat Workflow Automation System(2015)

Year Published: 2015

Language: English

Sector: Office Automation

Issue:

iSarita(2015)

Year Published: 2015

Language: English

Sector: Revenue

Issue:

e Reservation System in MSRTC(2015)

Year Published: 2015

Language: English

Sector: Service

Issue:

e Tendering(2016)

Year Published: 2017

Language: English

Sector: Procurement

Issue:

EIMS of Water Resource Department(2015)

Year Published: 2015

Language: English

Sector: Office Automation

Issue:

Prisoner Management System(2015)

Year Published: 2016

Language: English

Sector: Office Automation

Issue:

Sampada - E-Registration(2016)

Year Published: 2016

Language: English

Sector: Revenue

Issue:

LT Billing in Kerala State Electricity Board- Open Resource Utility Management Application(ORUMA)(2014)

Year Published: 2015

Language: English

Sector: Billing System

Issue:

FRIENDS Citizen facility for other utility payments(2014)

Year Published: 2015

Language: English

Sector: Service

Issue:

Panchatantra

Year Published: 2015

Language: English

Sector: Public Administration

Issue:

e Procurement(2015)

Year Published: 2016

Language: English

Sector: Procurement

Issue:

PELsoft(2016)

Year Published: 2016

Language: English

Sector: Revenue

Issue:

Systems for collection of Baseline Data and Applications for Energy Accounting in Jharkhand Bijli Vitran Nigam Limited under R-APDRP(2015)

Year Published: 2015

Language: English

Sector: Energy Accounting

Issue:

HT/LT Billing(2015)

Year Published: 2016

Language: English

Sector: Billing System

Issue:

Haryana Registration Information System (HARIS) (2014)

Year Published: 2015

Language: English

Sector: Revenue

Issue:

Drug Logistics Information and Management System(2014)

Year Published: 2015

Language: English

Sector: Office Automation

Issue:

SAP System in GSPC (2014)

Year Published: 2015

Language: English

Sector: ERP System

Issue:

VAT Information System (2015)

Year Published: 2015

Language: English

Sector: Revenue

Issue:

CCTNS in AP (2014)

Year Published: 2015

Language: English

Sector: Office Automation

Issue:

Computer Aided Administration in Registration Department (2014)

Year Published: 2014

Language: English

Sector: Revenue

Issue:

Ministry of Finance and Planning

Year Published: 2018

Language: Arabic

Sector: Public Administration

Issue: IT Controls

Ministry of Awqaf and Religious Affairs

Year Published: 2018

Language: Arabic

Sector: Public Administration

Issue: IT Controls

Ministry of National Economy

Year Published: 2017

Language: Arabic

Sector: Public Administration

Issue: IT Controls

Ministry of Local Government

Year Published: 2017

Language: Arabic

Sector: Public Administration

Issue: IT Controls

Jerusalem Water Undertaking

Year Published: 2017

Language: Arabic

Sector: Public Administration

Issue: IT Controls

Land Authority

Year Published: 2017

Language: Arabic

Sector: Public Administration

Issue: IT Controls

Ministry of Health

Year Published: 2017

Language: Arabic

Sector: Public sector - Health

Issue: IT Controls

High Tension Billing in APSPDCL and APEPDCL (2014)

Year Published: 2014

Language: English

Sector: Billing System

Issue:

VAT Information System (2015)

Year Published: 2015

Language: English

Sector: Revenue

Issue:

E-Panchayat (2016)

Year Published: 2017

Language: English

Sector: Public Administration

Issue:

SNCF Réseau

Year Published: 2018

Language: French

Sector: Public Sector - Transport

Issue: Information systems/ Digital

In order to restore its financial balance on a sustainable basis, SNCF Réseau must undertake recovery measures by generating real productivity gains and controlling its operating costs. The digital r
Read More...

In order to restore its financial balance on a sustainable basis, SNCF Réseau must undertake recovery measures by generating real productivity gains and controlling its operating costs. The digital revolution is spreading too slowly, however, with strong productivity gains.
Read Less...

Certification of Government Accounts for Fiscal Year 2014

Year Published: 2015

Language: French

Sector: Public Administration

Issue: The financial information system

The Court renewed a substantial reservation relating to the financial reporting system of the State, which was still insufficiently adapted to general accounting and audit audits. More than 300 applic
Read More...

The Court renewed a substantial reservation relating to the financial reporting system of the State, which was still insufficiently adapted to general accounting and audit audits. More than 300 applications across all departments form the information system that enables government management in many areas (accounting, taxation, payroll, operating expenses, real estate, treasury, etc.). The main observations concerning the IS can be summarised as follows: The current methods of using Chorus pose a significant risk to the reliability of accounting records, which are not compensated by sufficient automatic or manual controls. The manual entry of accounting entries in Chorus is a frequently used recording method which is, by nature, a source of errors. The clearance controls performed by each department suffer from a lack of centralized oversight to ensure their effectiveness. The complexity of the transfer arrangements in Chorus of accounting entries generated upstream by several applications places a significant risk of errors on the State’s accounts that are not sufficiently offset by the controls put in place. In the tax field, the Médoc application, used for the collection of professional taxes, produces very significant entries by implementing processes insufficiently described and complex to be checked by the Court.
Read Less...

The National Education Human Resources Information System

Year Published: 2020

Language: French

Sector: Public Administration

Issue: Information system

Ambitious program, SIRHEN has experienced a colliding conduct causing numerous drifts. Despite an attempt to restart in 2017, critical failures led to its shutdown. Today, after thirteen years and €
Read More...

Ambitious program, SIRHEN has experienced a colliding conduct causing numerous drifts. Despite an attempt to restart in 2017, critical failures led to its shutdown. Today, after thirteen years and €400 million invested in a tool that is destined to disappear, the department has come back to the starting point to modernize its human resources information system.
Read Less...

Certification of the accounts of the general social security scheme 2014

Year Published: 2015

Language: French

Sector: Public Administration

Issue: Risks relating to the information system

Little progress has been made in information systems and the increasing use of electronic data exchanges has revealed new risks of inaccurate data being recorded and recorded in the accounts.

Little progress has been made in information systems and the increasing use of electronic data exchanges has revealed new risks of inaccurate data being recorded and recorded in the accounts.

The deployment of the Human Resources Information System of economic and financial departments

Year Published: 2015

Language: French

Sector: Public Administration

Issue: Human resources information system

This is a reference from the First President of the Court of Auditors addressed to the Ministry of Finance and Public Accounts concerning the deployment of the Human Resources Information System of Ec
Read More...

This is a reference from the First President of the Court of Auditors addressed to the Ministry of Finance and Public Accounts concerning the deployment of the Human Resources Information System of Economic and Financial Ministries (SIRHIUS). Thus, the SIRHIUS project remains unfulfilled ten years after its launch. The chosen mode of governance explains for a large part the delay noted. While nearly €140 million should be spent on this project, the expected return on investment is now largely hypothetical.
Read Less...

The financial autonomy of universities: a reform to be pursued

Year Published: 2015

Language: French

Sector: Public Administration

Issue: Gaps in information systems

The upgrading of university information systems has not led to the transition to extended responsibilities and competences and the delays observed, in particular in the analysis and reporting function
Read More...

The upgrading of university information systems has not led to the transition to extended responsibilities and competences and the delays observed, in particular in the analysis and reporting functions, deprive university presidents and the ministry of the necessary steering tools. Some functions are not yet properly performed and are characterized by a variety of implemented solutions. While a large number of institutions operate in the same regulatory context, the heterogeneity of information systems found today in universities penalizes them.
Read Less...

Modernizing hospital information systems: a contribution to the efficiency of the healthcare system to be strengthened

Year Published: 2016

Language: French

Sector: Public Administration

Issue: Efficiency of hospital information systems

The ongoing modernisation of hospital information systems, particularly medical information systems, which the Court and the Regional Audit Chambers have analysed, is likely to make an important contr
Read More...

The ongoing modernisation of hospital information systems, particularly medical information systems, which the Court and the Regional Audit Chambers have analysed, is likely to make an important contribution to this essential progress. Under the impetus of successive national plans, in particular the most structuring Digital Hospital programme in force, hospital computing is in fact gradually modernizing. The awareness of the issues it is carrying through the hospital communities, especially the medical profession, is the major fact of recent years. It has helped to redefine hospital IT development strategies.
Read Less...

The information technology function in social security: an indispensable reinforcement

Year Published: 2016

Language: French

Sector: Public Administration

Issue: Economy and efficiency gains not achieved

However, the IT function of the three main social security schemes, which employs 9,000 employees for an annual expenditure of more than €1 billion, is insufficiently used to achieve efficiency gain
Read More...

However, the IT function of the three main social security schemes, which employs 9,000 employees for an annual expenditure of more than €1 billion, is insufficiently used to achieve efficiency gains. Despite reorganisations, the institutional, geographical and functional fragmentation of activities on a very high number of sites and the statutory obstacles to mobility affect the exercise of tasks.
Read Less...

Social security 2016

Year Published: 2016

Language: French

Sector: Public Administration

Issue:

Local organisations cover functional needs not provisionally or sustainably supported by national information systems by developing local applications. They cover extremely diverse realities. National
Read More...

Local organisations cover functional needs not provisionally or sustainably supported by national information systems by developing local applications. They cover extremely diverse realities. National organizations sometimes generalize some later on. The Court observed in the case of the family class that they do not systematically comply with national standards of design and documentation and that they can, therefore present certain risks for the integration of data in central information systems and, where appropriate, for the security of the latter. Lack of national approval of local applications can sometimes lead to risks of deviations from existing legislation.
Read Less...

Certification of the accounts of the general social security scheme 2015

Year Published: 2016

Language: French

Sector: Public Administration

Issue: Security of information systems

The risks related to changes in IT applications, operational incidents and the security of information systems are insufficiently covered by the control devices.

The risks related to changes in IT applications, operational incidents and the security of information systems are insufficiently covered by the control devices.

Report on the application of Social Security financing laws

Year Published: 2015

Language: French

Sector: Public Administration

Issue: The fragilities of information systems

Despite the support, methodological and financial, provided by the financial and health authorities, information systems still pose significant risks for the certification of the accounts of many inst
Read More...

Despite the support, methodological and financial, provided by the financial and health authorities, information systems still pose significant risks for the certification of the accounts of many institutions.
Read Less...

Overseas Issuing Institutes Overseas Issuing Institute (IEDOM) and Overseas Issuing Institute (IEOM)

Year Published: 2020

Language: French

Sector: Economy

Issue: IT trajectory

The IEDOM implements, on behalf of the Banque de France, the central bank tasks in the overseas departments, whose currency is the euro, while the IEOM acts as the central bank in the overseas authori
Read More...

The IEDOM implements, on behalf of the Banque de France, the central bank tasks in the overseas departments, whose currency is the euro, while the IEOM acts as the central bank in the overseas authorities, whose currency is the Pacific franc. It appears necessary to launch a new stage in the realisation of IT synergies between the IEDOM and the Bank of France, leading in particular to the elaboration of a complete roadmap for the rationalisation of the IEDOM application portfolio.
Read Less...

Town of Maubeuge (North)

Year Published: 2019

Language: French

Sector: Public Administration

Issue: IT management - the process of computerized management of collective catering

The municipality has carried out groupings of schools and restoration satellites, as well as the modernization of management by computerizing from end to end since 2015 the registrations, the attendan
Read More...

The municipality has carried out groupings of schools and restoration satellites, as well as the modernization of management by computerizing from end to end since 2015 the registrations, the attendance counts, the billing and the payment, thus streamlining the service and significantly improving the rate of recovery of revenues under management.The audit of the information systems shows a good general functioning despite the lack of interface with accounting management, an area of risk of errors that generates a time-consuming re-entry in the event of unpaid payments. Optimization of the process by grooming access rights and locking settings, initiated during the instruction, should be continued. secure the process of computerized management of collective restoration by updating user access rights and settings. The management process has been computerized from end to end since 2015 (excluding early childhood).
Read Less...

S.A. Air Austral (Reunion Island)

Year Published: 2019

Language: French

Sector: Economy

Issue: Deploy a computer schema

Composed of 12 staff and attached to the General Secretariat, the IT department has as its essential mission the maintenance of the IT network and the management of the technical architecture. One of
Read More...

Composed of 12 staff and attached to the General Secretariat, the IT department has as its essential mission the maintenance of the IT network and the management of the technical architecture. One of the weaknesses of the information system is a lack of integration of this service in the supervision of the various business applications, which are mostly managed directly by the departments. The company does not have a map showing the fragilities of the applications, as recommended by the National Agency for Information Systems Security (ANSSI), as well as the different data flows exchanged between the price management systems, billing and accounting. Applications are heterogeneous and each based on a specific and isolated platform.
Read Less...

Access to higher education: first assessment of the law

Year Published: 2020

Language: French

Sector: Education

Issue: Data exploitation

The Student Guidance and Success Act of 2018 aims to improve the three basic stages of the path of young people who are going to higher education: support and guidance at the high school, assignment i
Read More...

The Student Guidance and Success Act of 2018 aims to improve the three basic stages of the path of young people who are going to higher education: support and guidance at the high school, assignment in a training course, success in the first years of study. The creation of the Parcoursup platform in particular, which has had to cope with many imperatives, has been made without noticeable difficulties, but its security and its sustainability must be ensured, and its data could be exploited to the tune of the stakes.
Read Less...

Safety of ships and their crews

Year Published: 2020

Language: French

Sector: Transports

Issue: Information Systems

The State shall verify the correct application of the rules governing the safety of ships and their crews, whether French-flag vessels or foreign vessels calling at French ports. The assessment carrie
Read More...

The State shall verify the correct application of the rules governing the safety of ships and their crews, whether French-flag vessels or foreign vessels calling at French ports. The assessment carried out by the Court in 2012 showed that, following these disasters, the control system had been strengthened, but without overall consistency and with shortcomings in the coordination and steering of the services concerned, related in particular to deficiencies in their information systems. It points to an incomplete improvement in controls, in particular due to the still inadequate management of the departments responsible for them, since the recommendations formulated on this point by the Court in 2012 have not yet been implemented. While the French model for monitoring the safety of ships and their crews is going to undergo profound changes, the State must measure all the consequences for its future role and positioning.
Read Less...

The Ecole Polytechnique

Year Published: 2020

Language: French

Sector: Education

Issue: Digital Solutions

For example, the School is a recipient of a PIA project entitled “Territories of Educational Innovation: Digital Solutions for Higher Education Orientation”. This project aims to diversify and dem
Read More...

For example, the School is a recipient of a PIA project entitled “Territories of Educational Innovation: Digital Solutions for Higher Education Orientation”. This project aims to diversify and democratize applications to the competition through digital tools for guidance, upgrading and evaluation.
Read Less...

Digital infrastructures for higher education and research.

Year Published: 2020

Language: French

Sector: Public Administration

Issue: Digital Infrastructures

Digital infrastructures are thus the lowest layer of information systems. It is this hardware equipment, excluding software infrastructures, which allows the processing of data (supercomputers, server
Read More...

Digital infrastructures are thus the lowest layer of information systems. It is this hardware equipment, excluding software infrastructures, which allows the processing of data (supercomputers, server clusters, etc.), their transport (optical fibres, wifi terminals, computer routers, etc.) and their storage (computer servers, data centres, etc.). Data exploitation and ultimately the delivery of digital services are based on their level of performance, accessibility and robustness. The quality of these infrastructures is therefore a major challenge of competitiveness for the French scientific and pedagogical supply.
Read Less...

Data from the Ministry of Agriculture and Food

Year Published: 2020

Language: French

Sector: Public Administration

Issue: Data

Since the Digital Republic Act of 2016, data have been considered a central element of the Statebase approach. The Ministry of Agriculture and Food and its operators are both producers and users of da
Read More...

Since the Digital Republic Act of 2016, data have been considered a central element of the Statebase approach. The Ministry of Agriculture and Food and its operators are both producers and users of data (on agricultural holdings and foodstuffs, on European agricultural aid, on crops and livestock, etc.). At the heart of information systems, these data are both tools for public policy and the raw material for new uses (scientific or commercial operations, new services)
Read Less...

The dematerialisation of the issuance of securities by the prefectures

Year Published: 2020

Language: French

Sector: Public Administration

Issue: Digital Procedures

In this context, the “New Generation Prefecture Plan” (NGP) has focused on making better use of digital technologies to redeploy a portion of the workforce to understaffed missions and advancing t
Read More...

In this context, the “New Generation Prefecture Plan” (NGP) has focused on making better use of digital technologies to redeploy a portion of the workforce to understaffed missions and advancing them in skills. As a result, reception at the counter and processing of files were replaced by digital procedures for the application and issuance of four main titles that had so far involved approximately 4,000 agents. The restructuring objectives of the prefectural services were generally achieved despite insufficient preparation and difficult implementation of the IT projects. The lessons of this experience should make it possible to make better use of the potential opened up by dematerialisation and to put at the centre of future reforms the quality of service provided to users.
Read Less...

Fixed broadband and very high-speed networks: a first assessment

Year Published: 2017

Language: French

Sector: Technologies

Issue: Digital Transformation

In 2013, the State committed to cover the entire territory in ten years under the “Plan France très haut débit” to reach in 2022 100% of the 35 million homes and premises for professional use, 8
Read More...

In 2013, the State committed to cover the entire territory in ten years under the “Plan France très haut débit” to reach in 2022 100% of the 35 million homes and premises for professional use, 80% of which are fibre optics up to the customer. For this first review, the Court and the regional audit chambers examined 47 territorial projects covering half the population and one third of the territory. Financial jurisdictions therefore call for updated targets, better consideration of alternative fibre-to-the-subscriber technologies, in order to build a less costly “technology mix”, and to integrate a minimum broadband target for all. In general, the Plan focused on the construction of fixed infrastructures common to all audiences, without thinking about uses, whereas these are only one facet of digital transformation.
Read Less...

The service relationship of social security funds with insured persons in the digital age: transformations to be amplified

Year Published: 2019

Language: French

Sector: Health

Issue: IT Staff

The digital transformation of the service relationship of social security funds with insured persons is clearly under way. However, the offer of teleservices remains incomplete. In addition, policyhol
Read More...

The digital transformation of the service relationship of social security funds with insured persons is clearly under way. However, the offer of teleservices remains incomplete. In addition, policyholders still make extensive use of traditional methods of contact and sometimes carry out redundant procedures. The dematerialisation of the procedures must be continued while ensuring the support of insured persons who need it most in their use of digital tools. It is also necessary to improve the quality of the service provided and to share more widely the teleservices and data of insured persons between social organizations in orderuse of entitlements and improve the payment of benefits in a timely manner.
Read Less...

The Sirhen program

Year Published: 2017

Language: French

Sector: Public Administration

Issue: The replacement of information systems

The aim of the Sirhen programme is to replace the information and human resources management systems of the Ministry of National Education, Higher Education and Research. Launched in 2007 without a pr
Read More...

The aim of the Sirhen programme is to replace the information and human resources management systems of the Ministry of National Education, Higher Education and Research. Launched in 2007 without a precise technical and financial framework, the project encountered difficulties that were poorly mastered and hindered its smooth operation until it led to a fivefold increase in the final cost (from €60 million to €323 million), a stretch until 2023 of the overall schedule and a blocking of the program, the service provider not being able to deliver a version of the tool of a quality suitable for the support of the first agents. The Court noted recent but insufficient improvements to redress the project and stressed the absolute need to secure the programme’s conduct in order to achieve full deployment in 2020 within a strict financial framework.
Read Less...

Digital public service for education

Year Published: 2019

Language: French

Sector: Education

Issue: Digital

In 2013, the Law of Refoundation of the School of the Republic created the «public service of digital education», to teach students the digital techniques for their civic and professional integratio
Read More...

In 2013, the Law of Refoundation of the School of the Republic created the «public service of digital education», to teach students the digital techniques for their civic and professional integration, improve pedagogy through the use of digital services and resources in the classroom, but also promote equal opportunities. The aim was also to modernise the management of the educational service by facilitating relations between teachers, pupils and parents. The connection of schools and schools is still insufficient and, in many cases, non-existent; strong inequalities in the equipment of classes and students remain between the territories; the supply of digital resources, abundant and often innovative, is not organised; without sufficient initial and in-service training, only a minority of teachers are comfortable with digital-based pedagogy.
Read Less...

Very Large Research Infrastructure (TGIR)

Year Published: 2019

Language: French

Sector: Research

Issue: Digital

At the request of the Senate, the Court investigated the Very Large Research Infrastructure (RITF). Between 2012 and 2017, these companies generated €4.2 billion in resources. While positive momentu
Read More...

At the request of the Senate, the Court investigated the Very Large Research Infrastructure (RITF). Between 2012 and 2017, these companies generated €4.2 billion in resources. While positive momentum has been set in motion and continued since the Court’s last recommendations in 2009, there are still room for progress in establishing a national strategy and adapting the steering of the Irts, while the new European Horizon Europe programme is emerging. Three areas have been identified: rethinking the definition of research infrastructures, strengthening their strategic and operational management, and improving financial information to enable informed choices.
Read Less...

DGFIP and DGDDI information systems

Year Published: 2019

Language: French

Sector: Public Administration

Issue: Information Systems

These two directorates alone account for more than a quarter of the government’s IT expenditure and staff outside the Ministry of the Armed Forces. They have extensive information systems, managed w
Read More...

These two directorates alone account for more than a quarter of the government’s IT expenditure and staff outside the Ministry of the Armed Forces. They have extensive information systems, managed with reliability and reliability, but the seniority of certain equipment and applications limits their evolution. Significant structural weaknesses, particularly in governance, strategy and human resource management, are also forcing their digital transformation. The digital transition of the two directorates must now accelerate in order to improve the service provided and increase its performance.
Read Less...

The Dgfip, ten years after the merger

Year Published: 2018

Language: French

Sector: Public Administration

Issue: IT budgets

The creation in 2008 of the Directorate-General for Public Finance (Dgfip) was one of the emblematic reforms of the general revision of public policies. The balance sheet makes it essential for Dgfip
Read More...

The creation in 2008 of the Directorate-General for Public Finance (Dgfip) was one of the emblematic reforms of the general revision of public policies. The balance sheet makes it essential for Dgfip to undergo a genuine transformation by defining a strategy for change and by identifying the main factors that hinder, or even block, its implementation. The sharp decline in IT budgets over the past ten years has weakened already old information systems. The Dgfip has thus accumulated a “technical debt” that focuses on its modernization. The Court recommends taking advantage of digital technology to modernize service to taxpayers.
Read Less...

2018 National Assembly Accounts Certification

Year Published: 2019

Language: French

Sector: Institution

Issue: Information System

The Court of Auditors shall publish the Certification Report of the Accounts of the Senate for the financial year 2018 on 16 May 2019. For the sixth consecutive year, the Court conducted an audit for
Read More...

The Court of Auditors shall publish the Certification Report of the Accounts of the Senate for the financial year 2018 on 16 May 2019. For the sixth consecutive year, the Court conducted an audit for the certification of the Senate’s accounts. This mission, which aims to assess the compliance of the financial statements with the accounting framework, does not concern the management of the resources, material and human, mobilized to ensure its functioning. This report is published by the Court after being posted online by the Senate.
Read Less...

Have qualified staff to succeed in digital transformation

Year Published: 2020

Language: French

Sector: Public Administration

Issue: IT Staff

The Court’s survey of the competent digital personnel resources of economic and financial departments builds on the public reporting in 2018 on the information systems of the budget ministry directo
Read More...

The Court’s survey of the competent digital personnel resources of economic and financial departments builds on the public reporting in 2018 on the information systems of the budget ministry directorates and, in 2016, to user relations and state modernisation. It takes into account the digital transformation strategy adopted by the State in April 2019, titled “TECH.GOUV”, one of the challenges of which is to attract talent to the State-and the Action Plan for Digital and Information and Communication Systems, adopted in May 2019, in order to attract, recruit and retain skills in this field. Implementation of this plan runs until December 2021. The Court noted that the Ministries of Economic and Financial Affairs had difficulties in recruiting and retaining IT staff. To succeed in their digital transformation, they must implement new recruitment methods and strengthen existing ones but also develop their attractiveness.
Read Less...

The digitization of the demand for social housing

Year Published: 2020

Language: French

Sector: Housing

Issue: Digital Transformation

Since the 1990s, the State and its partners have sought to improve the application process. Local IT processing systems have been developed in some departments on the joint initiative of social donors
Read More...

Since the 1990s, the State and its partners have sought to improve the application process. Local IT processing systems have been developed in some departments on the joint initiative of social donors and local authorities. These local arrangements were maintained after the creation in 2009 of the national registration system, the management of which was entrusted in 2014 to a public interest group financed by the State and the Social Rental Housing Guarantee Fund. Over the years, this national system has become the receptacle for all applications for social housing, whether they are filed in paper form with lessors' offices, which is still the majority of cases in 2019, or made online, since 2015, via a public portal. The digitisation of the demand for social housing has led to real progress that can still be expanded; However, there are weaknesses in digital demand management and the development of digital demand management will need to be strengthened to ensure that both users and those responsible for and partners in housing policy benefit fully.
Read Less...

Digital transformation at the Ministry of Ecological and Inclusive Transition: a commitment to be confirmed

Year Published: 2020

Language: French

Sector: Public Administration

Issue: Digital Transformation

The digital transformation, resulting from the generalisation and further development of digital tools and information systems, entails a profound change in the administrative organisation; it introdu
Read More...

The digital transformation, resulting from the generalisation and further development of digital tools and information systems, entails a profound change in the administrative organisation; it introduces new working methods and changes the relationship between users, citizens and agents through tools, products and services based on innovative IT solutions. If it sees a real willingness of the Ministry of Ecological and Solidarity Transition and its main operators to engage in digital transformation, it considers that such a transformation requires a more assertive investment of the Ministry.
Read Less...

The digital services of Pôle emploi: a strategic transformation, major challenges

Year Published: 2020

Language: French

Sector: Public Administration

Issue: Digital Transformation

Facing a sharp rise in unemployment since the economic crisis of 2008, Pôle emploi, the national employment agency, has made digital transformation one of its main levers for adapting to this mass ma
Read More...

Facing a sharp rise in unemployment since the economic crisis of 2008, Pôle emploi, the national employment agency, has made digital transformation one of its main levers for adapting to this mass management and implementing its strategic orientations: to differentiate and personalise the services offered to job seekers and businesses, to increase the means in favor of the public by having the most need, to create the conditions for the autonomy of the public least in difficulty. In 2018, the budget for IT and digital expenditures was €455 million and the Information Systems Directorate had 1,551 full-time equivalent employees. The Court’s investigations into the 2019, which the digital transformation initiated by Pôle emploi in 2015 has profoundly changed the nature and modalities of the service provided by the operator and is now one of its main strategic axes. If the transformation of the business lines and the organisation could have been initiated over a short period, the operator must now face major technical weaknesses.
Read Less...

The pharmaceutical record

Year Published: 2020

Language: French

Sector: Public Health

Issue: Security of personal data

The Court pointed out the potential of the pharmaceutical dossier, while pointing out the lack of an assessment of its impact, both in terms of savings and in preventing adverse drug reactions. It als
Read More...

The Court pointed out the potential of the pharmaceutical dossier, while pointing out the lack of an assessment of its impact, both in terms of savings and in preventing adverse drug reactions. It also highlighted the performance of its IT system, despite certain risks to the security of personal data, and recalled that its conditions for integration into the personal medical file were not yet met. It is necessary to continue developing the pharmaceutical dossier by generalising its use, in particular in health establishments, consolidating its new functionalities and ensuring its articulation with the shared medical record and the digital health space.
Read Less...

Public Housing Board Domanys (Yonne)

Year Published: 2018

Language: French

Sector: Public Administration

Issue: Monitoring

In its review of the management of the National Agency for the Control of Social Housing (Ancols) for the financial years 2015-2017, the Court found that it had begun to carry out its tasks under rath
Read More...

In its review of the management of the National Agency for the Control of Social Housing (Ancols) for the financial years 2015-2017, the Court found that it had begun to carry out its tasks under rather satisfactory conditions, with the exception of its task of monitoring compliance with European law of public aid to social housing.
Read Less...

The agricultural aid payment chain

Year Published: 2018

Language: French

Sector: Agriculture

Issue: Payment chain

Late payments are expected to be settled by the end of 2018, but risk of refusal of discharge remains. The years 2015-2017 were marked in France by significant difficulties in the implementation of th
Read More...

Late payments are expected to be settled by the end of 2018, but risk of refusal of discharge remains. The years 2015-2017 were marked in France by significant difficulties in the implementation of the Common Agricultural Policy (CAP). These dysfunctions are due to the complexity of the agricultural aid payment chain and the proliferation of schemes.
Read Less...

Valuation of data from the IGN, Météo-France and Cerema

Year Published: 2019

Language: French

Sector: Environment

Issue: The opening of public data

The Court examined the issue of the opening of public data of three operators of the Ministry of Ecological and Solidarity Transition: the National Institute of Geographic and Forestry Information (IG
Read More...

The Court examined the issue of the opening of public data of three operators of the Ministry of Ecological and Solidarity Transition: the National Institute of Geographic and Forestry Information (IGN), Weather forecast -France and the Centre for Risk Studies and Expertise, environment, mobility and development (CEREMA), public administrative establishments producing and holding large amounts of data. These operators are required by the law of 7 October 2016 to make their databases and data open, that is to say listed, accessible to the public and reusable free of charge, but recurring application difficulties and insufficient control of this opening limit the exploitation of their data. The State asked those operators to develop their own resources through the sale of their data while proceeding to the free and free dissemination of them. It is essential that the State clarify the rules on data opening and accompany the redefinition of the economic models of its operators to put an end to the paradoxical injunction that threatens the economic equilibrium of these establishments.
Read Less...

The Effective Use of Tablets in State, Church and Independent Primary Schools

Year Published: 2019

Language: English

Sector: Public Sector - Education

Issue: One Tablet per Child Scheme

The use of IT systems to identify skills and professional development needs within the Public Service

Year Published: 2018

Language: English

Sector: Public Administration

Issue: Human Resources Systems

Cyer Security Across Government Entities

Year Published: 2017

Language: English

Sector: Cybersecurity

Issue: Data Management and Data Governance, User Education and Awareness, Malware Protection, Disaster Recovery, Asset Management and Access Controls

Mater Dei Hospital

Year Published: 2016

Language: English

Sector: Public sector - Health

Issue: IT Management, IT Applications, Information Security including Identity and Access Management, IT Operations including Risk Management - Business Impact Analysis, Risk Assessment and Business Continuity Plan and Disaster Recovery Plan

Housing

Year Published: 2015

Language: English

Sector: Social Policy - Housing

Issue: IT Management, IT Applications, Data Management, Information Security and IT Operations including Security Management, Business Continuity - Business Impact Analysis, Risk Assessment Exercise, Business Continuity and Disaster Recovery Plans

Commerce Department

Year Published: 2015

Language: English

Sector: Public Sector - Commerce

Issue: IT Management, IT Applications, Information Security including Security Management, IT Operations including Risk Management

Employment and Training Corporation

Year Published: 2014

Language: English

Sector: Public Sector - Employment

Issue: IT Management, E-Government, IT Applications, IT Operations, Information Security including Business Impact Analysis, Risk Assessment Exercise, Business Continuity and Disaster Recovery Plans, Security Awareness Training

Armed Forces of Malta

Year Published: 2014

Language: English

Sector: Public Sector - Home Affairs

Issue: IT Management, IT Applications, Information Security including Identity and Access Management, IT Operations including Risk Management

Institute of Tourism Studies

Year Published: 2013

Language: English

Sector: Public Sector - Tourism

Issue: IT Management, IT Applications, IT Operations, Information Security including Business Impact Analysis; Risk Assessment Exercise; Business Continuity and Disaster Recovery, Security Awareness Training

Primary and Secondary State Schools

Year Published: 2013

Language: English

Sector: Public Sector - Education

Issue: IT Management, IT Applications, Protection of Information Assets, Information Security, IT Operations including Access Controls, Risk Management, Business Continuity and Recovery

Health - Medicines Authority

Year Published: 2012

Language: English

Sector: Public sector - Health

Issue: IT Management, IT Applications, Protection of Information Assets, Risk Management, Business Continuity and Recovery

Culture and heritage - Heritage Malta

Year Published: 2012

Language: English

Sector: Public sector - Culture

Issue: IT Management, IT Applications, Protection of Information Assets, Information Security including Identity and Access Management, IT Operations including Access Controls, Risk Management, Business Continuity and Recovery

Taxation - Inland Revenue Department

Year Published: 2011

Language: English

Sector: Public Administration

Issue: IT Management, IT Applications, Protection of Information Assets, Risk Management, Business Continuity and Recovery

IT Audit Report on IT Systems in RMA

Year Published: 2019

Language: English

Sector: Central Bank

Issue: Central Bank

IT Audit Report on the Efficiency and Effectiveness in Public Service Delivery through G2C Platform

Year Published: 2019

Language: English

Sector: E-government

Issue: e-government service delivey, g2c, e-goverance, Strategic controls and IT Controls

IT Audit on Core Banking System, Bhutan Development Limited

Year Published: 2019

Language: English

Sector: Financial Institute

Issue: Core Banking System, IT controls

IT Audit on Core Banking System, Bank of Bhutan Limited

Year Published: 2017

Language: English

Sector: Financial Institute

Issue: Core Banking System, IT controls

The Public Accounting System on the SAP ECC 6.0 Platform Audit Report

Year Published: 2016

Language: English

Sector: Public Accounting

Issue: Effectiveness of the IT system

System implementation failing to meet objectives, system configuration not being able to deliver for the requirements, insufficient human resource capacity to sustain the system effectively

System implementation failing to meet objectives, system configuration not being able to deliver for the requirements, insufficient human resource capacity to sustain the system effectively

Making it easier to start a business - joint report by SAI's of Faroe Islands, Finland, Iceland, Norway and Sweden

Year Published: 2019

Language: English

Sector: Public sector digitalisation

Issue: Ease of doing business

Digitalisation of government in Iceland - starting a business - restaurants

Year Published: 2019

Language: Icelandic

Sector: Public sector digitalisation

Issue: Digitalisation of government in Iceland - starting a business - restaurants

Report on the access to IT systems that support the provision of essential services to the Danish society

Year Published: 2015

Language: Danish

Sector: Public Administration

Issue: Protect IT systems and data that support the infrastructure of the Danish society

Report on the Danish government’s tendering of IT operations and maintenance

Year Published: 2016

Language: Danish

Sector: Public Administration

Issue: Tendering of IT operations and maintenance

Report on the protection of IT systems and health data in three Danish regions

Year Published: 2017

Language: Danish

Sector: Public Administration

Issue: IT systems and health data

Report on protection against ransomware attacks

Year Published: 2018

Language: Danish

Sector: Public Administration

Issue: Email-based ransomware attacks

Report on the protection of research data at the Danish universities

Year Published: 2019

Language: Danish

Sector: Public Administration

Issue: Protecting their research data against unknown IT equipment

Has Public Administration Used All Opportunities for Efficient Management of ICT Infrastructure?

Year Published: 2019

Language: Latvian

Sector: E-government

Issue: ICT governance and optimization, and ICT security

ICT governance andoptimization: - the objectives of ICT optimisation in policy planning documents are more defined in “a form of desires”, without specified deadlines and results to be achieved;
Read More...

ICT governance andoptimization: - the objectives of ICT optimisation in policy planning documents are more defined in “a form of desires”, without specified deadlines and results to be achieved; - there is no long-term vision of ICT development and optimisation neither in the country nor in the ministries; - ministries and their subordinated institutions optimise ICT infrastructure corresponding to their understanding and capacity. ICT security: - unified security requirements of ICT infrastructure and data centers are not established for processing information of equal importance; - security threats exist in most server rooms – data centers are not sufficiently protected from physical access and environmental risks; - important information systems are hosted even in low level data centers.
Read Less...

Solutions for the Automation, Monitoring, Oversight and Control of the Operation Conditions of Storage, Pipelines and Terminals for the Transportation of Hydrocarbons

Year Published: 2018

Language: Spanish

Sector: hydrocarbons

Issue: SCADA Systems

This ICT audit is linked to the storage conditions, pipelines and terminals for the transportation of hydrocarbons, as well as its proper usage, maintenance, risk management and information security
Read More...

This ICT audit is linked to the storage conditions, pipelines and terminals for the transportation of hydrocarbons, as well as its proper usage, maintenance, risk management and information security.
Read Less...

Cybersecurity audit of Electronic Banking and payment methods of the Mexican government financial system

Year Published: 2019

Language: Spanish

Sector: Financial system

Issue: Payment Systems

The principal Payment Systems in Mexico are: the Interbank Electronic Payment System (SPEI) and the Interbank Payments System in Dollars (SPID) which is regulated, supervised and operated by the Centr
Read More...

The principal Payment Systems in Mexico are: the Interbank Electronic Payment System (SPEI) and the Interbank Payments System in Dollars (SPID) which is regulated, supervised and operated by the Central Bank of Mexico. This revision contributes to improve cybersecurity of Payment Systems in regulatory, supervision, surveillance and operating conditions of the participants and manager system.
Read Less...

Does the state administration effectively use the stored information?

Year Published: 2017

Language: Latvian

Sector: E-government

Issue: Data exchange between institutions and open data policy

Data exchange between institutions: - state administration institutions do not have sufficient cooperation and not exchange the data electronically. Some institutions still choose the easiest way - t
Read More...

Data exchange between institutions: - state administration institutions do not have sufficient cooperation and not exchange the data electronically. Some institutions still choose the easiest way - they request that a resident should submit to one institution statements issued by another institution. The resident becomes a "courier" and does just that instead of one information system communicating with another to obtain the information necessary for decision-making. State administration could use the accumulated information more effectively without requesting the resident to provide data already available to institutions. - Planning and cooperation organisation of data exchange is fundamentally impeded by a fact that state administration still has not unified information and records on data, mutual movement and access conditions of 178 state and municipal information systems. Data circulation flow is not sufficiently transparent and traceable in order for institutions to have full information for the purposes of planning development of their own information systems and improvement of interoperability. As a result, institutions have difficulty in identifying whether specific information is already accumulated by state administration. In such situations, the institutions usually choose the easiest way: to request the information from the person; - A significant obstacle for establishment of data exchange is the issue of payment. Even though mostly information exchange between the state administration institutions takes place free of charge, yet there are exceptions based on the fact that these institutions are funded not only by the state budget means but also by revenue from services and state fees, including for a simple verification of information in registers. Open data policy: - One of the ways to use data effectively is to create open data clusters by providing access of public data in a machine-readable form, free of charge and without restrictions to accessibility; - However, the list of priority data clusters to be opened has not been developed in this area as well, even though policy planning documents have identified significance and necessity of open data; - Even though one open data portal is planned, it may not be enough if it is not clear what new data clusters will be opened.
Read Less...

Do Archives Ensure the Storage of e-documents?

Year Published: 2016

Language: Latvian

Sector: Public sector - Culture

Issue: Storage of e-documents and data

Storage of e-documents and data: - there is no understanding concerning constantly in data bases stored information and their attributes form an electronic document and are to be selected for transfe
Read More...

Storage of e-documents and data: - there is no understanding concerning constantly in data bases stored information and their attributes form an electronic document and are to be selected for transferring to the archives; - archive information system not introduced - e-documents can’t be transferred electronically to archive; - data from information systems are not transferred to archive.
Read Less...

Efficiency of the process of issuing of biometric passports and supporting information systems

Year Published: 2015

Language: Latvian

Sector: Internal Affairs

Issue: Process of issuance and quality of bio-metric data

The process of issuance of personal identification documents: - the system of issuance of personal identification documents is safe, traceable and compliant, however there is a potential to improve
Read More...

The process of issuance of personal identification documents: - the system of issuance of personal identification documents is safe, traceable and compliant, however there is a potential to improve the system so that it would more focused on needs of people, cheaper and faster. In order to receive a passport sooner than within 10 working days a user is paying double amount of state fee, although judging by its internal resources and employee work load the Office of Citizenship is able to prepare documents within 4 days. This means that the state fee for expedited issuance of passport is unjustified, since Office is able to perform this service within its normal mode of operations. - The internal control developed by Office is insufficient and there are potential risks of fraud. According to the audit findings, in several cases documents were issued during a shorter term by levying the standard tariff for preparation of documents, as well as in some cases document applications were admitted and documents were issued during holidays, outside the office hours of Office departments. The quality of biometric data: - One of the benefits of biometric documents is the possibility to include biometric data which facilitates personal identity check and reduced the potential of fraudulent actions performed by using a document that belongs to another person. The quality of biometric data included in passport is low, this may become an obstacle during border crossing, when data included in the passport are compared with the actual fingerprints. According to the audit findings, the results of the quality control of personal biometric data indicated to significant deficiencies, which Office should eliminate urgently.
Read Less...

Software management assessment in local governments and local government educational institutions

Year Published: 2013

Language: Latvian

Sector: Local Government

Issue: Using of unlicensed software and computer security management

Using of unlicensed software: - 24% of cases the software, whose right to use cannot be proved by the source documents, is used; - 15% of cases the free software, the use of which in a local gover
Read More...

Using of unlicensed software: - 24% of cases the software, whose right to use cannot be proved by the source documents, is used; - 15% of cases the free software, the use of which in a local government or local government educational institution is prohibited in accordance with the software licensing terms, is used. Computer security management: - computer hardware users are granted unlimited rights or administrator rights to work with the computer hardware, which allow users to perform installation of software independently; - the access to every third computer is not restricted by the need of a password and unique user name; - in 10% of cases no antivirus software was installed on the computer hardware, or the license period of the antivirus software has expired, or the latest update of the antivirus database has not been received for over a month
Read Less...

Evaluation of the effectiveness of implementation and compliance with regulatory enactments and the legal framework of the project “E-government Portfolio”

Year Published: 2010

Language: Latvian

Sector: E-government

Issue: Project “E-government Portfolio” implementation

Project “E-government Portfolio” implementation: - availability of information regarding ongoing IT projects in State administration has not improved, developed for it the project management syst
Read More...

Project “E-government Portfolio” implementation: - availability of information regarding ongoing IT projects in State administration has not improved, developed for it the project management system is not being used; - e-services developed are not frequently used and required, the majority of e-services developed are used at a rate of less than 50 times a month, and eight e-services were not available at the time of the audit inspection; - system for electronic circulation of documents and for task control has not been implemented - integration of system with the record management systems in ministries and other State institutions has not been implemented and the exchange of electronic documents has not been automated.
Read Less...

The Common External Relations Information System (CRIS)

Year Published: 2012

Language: 23 EU languages

Sector: EU External Action

Issue: Audit questions: (a) Is CRIS designed to effectively respond to the Commission’s needs? (b) Is the information provided by CRIS reliable? (c) Did the Commission sufficiently secure CRIS and its data?

Lessons from the European Commission’s development of the second generation Schengen information system (SIS II)

Year Published: 2014

Language: 23 EU languages

Sector: Border Control

Issue: Audit questions: (a) Did the Commission deliver SIS II on time? (b) Did the Commission deliver SIS II in line with initial cost estimates? (c) Was there a robust business case for SIS II throughout the project which took into account major changes to the costs and expected benefits? (d) Did the Commission learn and apply lessons from its management of the SIS II development project?

The Land Parcel Identification System: a useful tool to determine the eligibility of agricultural land – but its management could be further improved

Year Published: 2016

Language: 23 EU languages

Sector: Agriculture

Issue: Audit question: Is the Land Parcel Identification System (LPIS) well managed? (LPIS - IT system based on photographs of agricultural parcels used to check payments made under the Common Agricultural Policy).

EU fisheries controls: more efforts needed

Year Published: 2017

Language: 23 EU languages

Sector: Fisheries

Issue: One of the audit questions was "Is the data needed for fisheries management complete and reliable?

A series of delays in Customs IT systems: what went wrong?

Year Published: 2018

Language: 23 EU languages

Sector: Customs

Issue: Audit assessed whether the Customs 2020 programme, together with the related customs legislation, are likely to deliver the IT systems necessary for improving customs operations in the EU. Audit focused on the development of the Union components of new IT systems.

Challenges to effective EU cybersecurity policy (Briefing Paper, not an Audit Report)

Year Published: 2019

Language: 23 EU languages

Sector: Cybersecurity

Issue: The objective was to provide an overview of the EU’s complex cybersecurity policy landscape and identify the main challenges to effective policy delivery.

EU information systems supporting border control - a strong tool, but more focus needed on timely and complete data

Year Published: 2019

Language: 23 EU languages

Sector: Border Control

Issue: Audit questions: (a) Are the EU information systems for internal security well designed to facilitate efficient border checks? (b) Are the EU information systems for internal security providing border guards with relevant, timely and complete information during border checks?

Special audit of information security of the data centers of the Ministry of Finance

Year Published: 2019

Language: Spanish

Sector: Public Sector - Treasury

Issue: Information Security of Data Centers

Audit of special character on the quality and security of the information for the making of management decisions of the substantive processes of the Ministry of Finance

Year Published: 2018

Language: Spanish

Sector: Public Sector - Treasury

Issue: Information quality and security for the management decision making of the primary processes

Report of the Special Audit on the Integration, Quality Management and Security of the Information Systems related to the processes of Administration of the Salary Schedule of the Ministry Of Public Education

Year Published: 2018

Language: Spanish

Sector: Public Sector - Education

Issue: Information integration, quality and security

Special Audit on the Strategic Alignment of Information Technologies and the Continuity of Services Supported in Information Systems of the Ministry of Public Education (MEP)

Year Published: 2018

Language: Spanish

Sector: Public Sector - Education

Issue: Strategic alignment of information technologies and continuity of services supported in information systems

Special audit on the Functionality and Sufficiency of the Automated Systems of the National Pension Directorate

Year Published: 2019

Language: Spanish

Sector: Public Sector - Retirements

Issue: Systems functionality and sufficiency

Report with adjustments, of the Audit of a special character on the Quality and Security of the Information for the making of Management Decisions of the Substantive Processes of the Directorate General of Migration and Foreigners

Year Published: 2017

Language: Spanish

Sector: Public Sector - Migration

Issue: Information quality and security

Special Audit on Technological Controls in the CCSS Collection System

Year Published: 2019

Language: Spanish

Sector: Public sector - Health

Issue: System´s technological controls

The Quality of the Information on Housing Bonds contained in the BANHVI Automated System

Year Published: 2019

Language: Spanish

Sector: Public sector - Bank for Housing

Issue: Information Quality

Special Audit on the Strategic Planning of the Information Technologies in the Legislative Assembly

Year Published: 2017

Language: Spanish

Sector: Legislative Congress

Issue: Strategic planning of information technologies

PA on National Government Financial Management Information System

Year Published: 2015

Language: English

Sector: Public Administration

Issue: IT System- Financial System, IT controls, implementation of feature or modules

Public Procurement Monitoring Office, E-GP

Year Published: 2018

Language: English

Sector: Public Administration

Issue:

This IT audit covers the Public Procurement Monitoring Office’s software package, Electronic Government Procurement (e-GP) with a focus on strategic, operational and administrative controls.

This IT audit covers the Public Procurement Monitoring Office’s software package, Electronic Government Procurement (e-GP) with a focus on strategic, operational and administrative controls.

IT Audit of Public Expenditure Management System (PEMS)

Year Published: 2016

Language: English

Sector: Finance

Issue: ICT System, IT controls, Validations

The Royal Audit Authority (RAA) conducted the audit with an audit objective to determine the existence, adequacy, and effectiveness of controls in Public Expenditure Management System (PEMS) in relati
Read More...

The Royal Audit Authority (RAA) conducted the audit with an audit objective to determine the existence, adequacy, and effectiveness of controls in Public Expenditure Management System (PEMS) in relation to public financial management. The audit also aimed to identify potential security risks that might open vulnerabilities in the system The RAA noted certain improvements brought about in public financial management with the introduction of PEMS in terms of improved efficiency in preparing the Annual Financial Statements of the Royal Government and contributed towards bringing certain consistency in reporting between Department of Public Accounts (DPA) and budgetary agencies. Moreover, mobility of the system was also achieved as the system is now available online as opposed to earlier legacy system.
Read Less...

Performance Audit on Crew Management System Union Government, Railways

Year Published: 2015

Language: English

Sector: Transport

Issue: Information Management

Federal Information Security: Actions Needed to Address Challenges

Year Published: 2016

Language: English

Sector: Law and order

Issue: Cybersecurity

Agencies Need to Improve Controls over Selected High-Impact Systems

Year Published: 2016

Language: English

Sector: Cross-government

Issue: Cybersecurity

Protecting information across government

Year Published: 2106

Language: English

Sector: Cross-government, Public administration

Issue: Information Security

Digital Britain 2: Putting users at the heart of government’s digital services

Year Published: 2013

Language: English

Sector: Cross Government

Issue: E-Governance

Audit of e-Procurement

Year Published: 2014

Language: English

Sector: Cross Government , Public Administration

Issue: E-Governance

Cybersecurity Follow-up Audit

Year Published: 2017

Language: English

Sector: Revenue and Taxation, Personnel Administration and Training, Borders and immigration

Issue: Cybersecurity

myGov Digital Services

Year Published: 2017

Language: English

Sector: Cross Government, Revenue and Taxation

Issue: E-Governance

Cyber Resilience

Year Published: 2016

Language: English

Sector: Agriculture, Industry, Science & Technology

Issue: Cybersecurity

Cyber Attacks: Securing Agencies' ICT Systems

Year Published: 2014

Language: English

Sector: Revenue and Taxation, Personnel Administration and Training, Borders and immigration

Issue: Cybersecurity