Summary: Audit Objective Determine whether East Syracuse Minoa Central School District (District) officials established adequate information technology (IT) controls to ensure employees’ personal, private and sensitive information (PPSI) on the financial server was adequately protected from unauthorized access, use and loss. Key Findings District officials did not adequately apply established IT controls to ensure PPSI…
Search Results for: DiNapoli
NY State Comptroller DiNapoli Releases School District Audits
New York State Comptroller Thomas P. DiNapoli announced school district audits this week. Here are the summaries with links to the audit reports: Hudson City School District – Information Technology (Columbia County) District officials did not adequately secure and protect its information technology (IT) systems against unauthorized use, access and loss. The board and district…
New York State Comptroller Thomas P. DiNapoli Releases School District Audit
Lyncourt Union Free School District – Information Technology (Onondaga County) District officials did not adequately manage network user accounts or develop and adopt a written disaster recovery plan. As a result, the district has an increased risk that it could lose important data and suffer serious interruption in operations. District officials should have disabled 17…
NY: State Comptroller DiNapoli Releases Audit of Cairo-Durham Central School District – Information Technology
Background The Cairo-Durham Central School District (District) serves the Towns of Cairo, Durham, Athens, Catskill, Coxsackie and Greenville in Greene County, Conesville in Schoharie County, and Rensselaerville in Albany County. The District is governed by a Board of Education (Board) composed of nine elected members. The Board is responsible for developing policies, rules and regulations…
NYS State Comptroller DiNapoli audit of City of Yonkers
Well, this sounds like an epic FAIL on the City of Yonker’s part, doesn’t it? City of Yonkers – Information Technology (Westchester County) The IT department’s acceptable computer use policy was not signed or acknowledged by all employees and city officials have also not classified personal, private and sensitive information based on its level of…
Comptroller DiNapoli: Schools Must Do More to Limit Access to Sensitive Student Databases
Yes, it’s as bad as I’ve been saying for years. Now if they will just audit the NYC Department of Education, too. Employees in six upstate New York school districts had inappropriate computer access to sensitive student data and were able to change student grades and attendance records without proper authorization, according to an audit released today…