Search
Morristown Central School District – Information Technology (2021M-137)
… accounts or develop an IT contingency plan that details how District officials would respond to IT disruptions. Officials did not: Develop written … procedures for granting, changing and revoking user access to the overall network. Perform periodic reviews of network …
https://www.osc.ny.gov/local-government/audits/school-district/2021/12/03/morristown-central-school-district-information-technology-2021m-137Warsaw Central School District – Out-of-District Tuition Billing (2021M-140)
… Central School District (District) students enrolled in out-of-district programs were accurately calculated and … Warsaw Central School District District students enrolled in outofdistrict programs were accurately calculated and …
https://www.osc.ny.gov/local-government/audits/school-district/2021/12/03/warsaw-central-school-district-out-district-tuition-billing-2021m-140Haverstraw-Stony Point Central School District – Information Technology (2021M-108)
… officials established adequate internal controls over user accounts to prevent unauthorized use, access and loss. Key … not establish adequate controls over the District’s user accounts to protect against unauthorized use, access and … for granting, changing or disabling network user accounts or user permissions. Disable 130 unneeded generic …
https://www.osc.ny.gov/local-government/audits/school-district/2021/12/03/haverstraw-stony-point-central-school-district-information-technologySchuylerville Central School District – Medicaid Reimbursements (2021M-131)
Determine whether the Schuylerville Central School District District maximized Medicaid reimbursements by submitting claims for all eligible Medicaid services provided
https://www.osc.ny.gov/local-government/audits/school-district/2021/12/17/schuylerville-central-school-district-medicaid-reimbursements-2021m-131Wayne Central School District – Transportation Department Operations (2021M-160)
… the transportation department’s operations in accordance with Board-adopted policies and procedures. District officials generally agreed with our recommendations and indicated they would take …
https://www.osc.ny.gov/local-government/audits/school-district/2022/01/14/wayne-central-school-district-transportation-department-operations-2021mArkport Central School District – Network Access Controls (2021M-162)
… Central School District (District) officials ensured network access controls were secure. Key Findings District officials did not ensure that the District’s network access controls were secure. District officials did … accounts and permissions. The District had 92 unneeded network user accounts and nine user accounts with unnecessary …
https://www.osc.ny.gov/local-government/audits/school-district/2022/01/28/arkport-central-school-district-network-access-controls-2021m-162Otego-Unadilla Central School District – Information Technology (2021M-178)
… not ensure computerized data was safeguarded. In addition to sensitive IT control weaknesses that we communicated confidentially to District officials, we found: The District had 58 unneeded … with the findings in our report and indicated they plan to initiate corrective action. …
https://www.osc.ny.gov/local-government/audits/school-district/2022/03/18/otego-unadilla-central-school-district-information-technology-2021m-178Highland Central School District – Non-Instructional Overtime (2021M-8)
… monitor overtime for non-instructional employees or review the overtime payment calculations. As a result: 20 … non-emergencies. With appropriate scheduling, over $60,000 of these overtime payments could have been avoided or reduced. 10 employees …
https://www.osc.ny.gov/local-government/audits/school-district/2021/06/04/highland-central-school-district-non-instructional-overtime-2021m-8New Lebanon Central School District – Network User Accounts (2021M-30)
… officials established adequate internal controls over network user accounts to prevent unauthorized use, access and … did not establish adequate controls over the District’s network user accounts to protect against unauthorized use, … Disable 26 unneeded generic accounts of the 48 generic network accounts examined. Ensure acceptable use policy (AUP) …
https://www.osc.ny.gov/local-government/audits/school-district/2021/06/11/new-lebanon-central-school-district-network-user-accounts-2021m-30Valley Central School District – Information Technology (2020M-154)
… protected. District officials did not monitor compliance with the District’s computer acceptable use policy. The … to officials. Key Recommendations Monitor compliance with the computer acceptable use policy. Adopt a contingency … over the server room. District officials generally agreed with our recommendations and indicated they planned to …
https://www.osc.ny.gov/local-government/audits/school-district/2021/06/18/valley-central-school-district-information-technology-2020m-154Whitesville Central School District – Information Technology (2021M-22)
… District (District) officials adequately secured access to the network and information systems. Key Findings District officials did not adequately secure access to the network and information systems. District officials … user accounts. Establish written policies or procedures to monitor shared accounts or for adding, modifying or …
https://www.osc.ny.gov/local-government/audits/school-district/2021/06/18/whitesville-central-school-district-information-technology-2021m-22Watervliet City School District – Information Technology (2021M-34)
… (IT) control weaknesses were communicated confidentially to officials. Key Recommendations Review network user … and unneeded permissions. Monitor employees’ Internet use to ensure compliance with the District’s AUP. District … and have initiated, or indicated they planned to initiate, corrective action. …
https://www.osc.ny.gov/local-government/audits/school-district/2021/07/02/watervliet-city-school-district-information-technology-2021m-34Mount Pleasant Central School District – Information Technology User Accounts (2021M-31)
… access and/or loss. Officials did not: Monitor compliance with the District’s acceptable use policy (AUP). Adequately … Develop and implement procedures to monitor compliance with the AUP. Develop written procedures for managing system … and appropriateness. District officials generally agreed with our recommendations and initiated or indicated they plan …
https://www.osc.ny.gov/local-government/audits/school-district/2021/07/16/mount-pleasant-central-school-district-information-technology-userMarlboro Central School District – Information Technology (2021M-33)
… of shared network user accounts. District officials agreed with our recommendations and indicated they are taking …
https://www.osc.ny.gov/local-government/audits/school-district/2021/07/23/marlboro-central-school-district-information-technology-2021m-33Ripley Central School District – Financial Management (2021M-23)
… officials properly managed fund balance in accordance with statute. Key Findings The Board and District officials … did not properly manage fund balance in accordance with statute. The Board and District officials: Overestimated … fund balance policy. District officials generally agreed with our findings and indicated they have initiated or will …
https://www.osc.ny.gov/local-government/audits/school-district/2021/08/13/ripley-central-school-district-financial-management-2021m-23Cornwall Central School District – Information Technology (2021M-83)
… over the District’s user accounts and software updates to help prevent unauthorized use, access and loss. Key … officials did not establish adequate internal controls to safeguard the District’s user accounts. Specifically: … Sensitive IT control weaknesses, including issues related to software updates, were communicated confidentially to …
https://www.osc.ny.gov/local-government/audits/school-district/2021/08/20/cornwall-central-school-district-information-technology-2021m-83Penn Yan Central School District – Network Access Controls (2021M-79)
… Regularly review network user accounts and permissions to determine whether they were appropriate or needed to be disabled. As a result, we identified 1,094 unneeded … District’s Information Technology (IT) service provider to clearly identify the provider’s responsibilities and …
https://www.osc.ny.gov/local-government/audits/school-district/2021/09/03/penn-yan-central-school-district-network-access-controls-2021m-79Haldane Central School District – Information Technology (2021M-84)
… (District) officials adequately managed and monitored user accounts and permissions. Key Findings District officials did not adequately manage and monitor user accounts and permissions. As a result, the District has an … officials did not: Disable 74 unneeded network user accounts of the 300 accounts we examined. The 74 accounts …
https://www.osc.ny.gov/local-government/audits/school-district/2021/11/05/haldane-central-school-district-information-technology-2021m-84Duanesburg Central School District – Information Technology (2021M-40)
… pdf ] Audit Objective Determine whether Duanesburg Central School District (District) officials ensured information … Determine whether Duanesburg Central School District District officials ensured information …
https://www.osc.ny.gov/local-government/audits/school-district/2021/11/19/duanesburg-central-school-district-information-technology-2021m-40Eden Central School District – Mental Health Training Component of the New York SAVE Act (S9-21-28)
… Central School District (District) used District resources to provide the mental health component of the New York Safe … Violence in Education Act (SAVE Act) training requirement to staff. Key Findings The District did not provide mental health training to any staff for the 2020-21 school year by September 15, …
https://www.osc.ny.gov/local-government/audits/school-district/2022/06/08/eden-central-school-district-mental-health-training-component-new-york