Search
Contract Advisory No. 6
… Vendor ID associated to a contract record in the Statewide Financial System (SFS) can only be changed when the original contract (sequence 0) … vendor, or follow procedures provided in the Guide to Financial Operations, Chapter X for requesting a Vendor … Vendor ID associated to a contract record in the Statewide Financial System SFS can only be changed when the original …
https://www.osc.ny.gov/state-agencies/advisories/contract-advisory/6-correcting-vendor-id-contractArea #6 – Patch Management – Information Technology Governance
… systems running those programs from attacks. A patch can be an upgrade (adding features), computer bug fix, new … can look for and exploit unpatched software. Additionally, when vendors stop supporting certain software versions, they … Without ongoing updates, security weaknesses and bugs in the software can be exploited by attackers in a wide range …
https://www.osc.ny.gov/local-government/publications/it-governance/area-6-patch-managementHamilton Fulton Montgomery Board of Cooperative Educational Services – Investment Program (2023M-116)
… During the 12-month audit period, BOCES held $7.4 million in money market accounts and earned interest totaling $105,000, and held $4.6 million in non-interest bearing accounts. Had officials considered … flow forecasts to monitor and estimate funds available for investment. Key Recommendations Adopt a comprehensive …
https://www.osc.ny.gov/local-government/audits/boces/2023/12/22/hamilton-fulton-montgomery-board-cooperative-educational-services-investmentBlind Brook-Rye Union Free School District – Capital Project Change Orders (2023M-35)
… 7 million were not submitted to SED, as required, for the Commissioner of Education’s (Commissioner) approval. Six change orders totaling $155,173 were approved by the Commissioner for $74,002 . The Assistant Superintendent for …
https://www.osc.ny.gov/local-government/audits/school-district/2023/08/11/blind-brook-rye-union-free-school-district-capital-project-change-ordersTown of Homer – Non-Payroll Disbursements (2023M-63)
… disbursements. As a result, Town officials made duplicate payments totaling $79,806, and the Town has an … established. Establish procedures to detect and prevent duplicate payments from occurring. Conduct or ensure an …
https://www.osc.ny.gov/local-government/audits/town/2023/08/11/town-homer-non-payroll-disbursements-2023m-63Town of Greig – Long-Term Planning (2023M-13)
… report – pdf] Audit Objective Determine whether the Town of Greig (Town) Board (Board) established long-term plans and … We reviewed the Town’s capital assets and found: 15 of the 27 pieces of major highway equipment (56 percent) were beyond their optimal useful life. Some of the highway equipment beyond optimal useful …
https://www.osc.ny.gov/local-government/audits/town/2023/05/19/town-greig-long-term-planning-2023m-13Tuckahoe Union Free School District – Overtime (2023M-53)
… totaling $324,934 primarily for routine anticipated events. Had the District considered alternative options …
https://www.osc.ny.gov/local-government/audits/school-district/2023/07/21/tuckahoe-union-free-school-district-overtime-2023m-53Village of Odessa – Clerk-Treasurers' Records and Reports (2020M-11)
… the Clerk-Treasurers accurately and completely accounted for, recorded and reported financial transactions in a timely … not entitled to and paid herself an unauthorized payment for unused leave to which she was not entitled when she left … requirements. Develop written policies and procedures for the type of records needed to request, approve, earn, use …
https://www.osc.ny.gov/local-government/audits/village/2023/06/16/village-odessa-clerk-treasurers-records-and-reports-2020m-11North Collins Central School District – Information Technology Equipment Inventory (2023M-39)
… officials maintained a complete and accurate inventory of information technology (IT) assets. Key Findings District … did not maintain a complete and accurate inventory of IT assets (computers, tablets, document cameras, etc.).As … were not always updated to include all acquisitions of, removed/disposed of, or recycled IT assets. Of the 79 IT …
https://www.osc.ny.gov/local-government/audits/school-district/2023/06/23/north-collins-central-school-district-information-technology-equipmentMexico Academy Central School District – Procurement (2023M-75)
… when procuring professional services for occupational and physical therapy, legal, music therapy, advising and architectural services from seven …
https://www.osc.ny.gov/local-government/audits/school-district/2023/08/25/mexico-academy-central-school-district-procurement-2023m-75Sodus Central School District – Software Management (2022M-64)
… Maintain a complete and comprehensive software inventory list of all authorized, appropriate and necessary software …
https://www.osc.ny.gov/local-government/audits/school-district/2022/11/23/sodus-central-school-district-software-management-2022m-64Town of Brookhaven Local Development Corporation – Project Approval and Monitoring (2021M-188)
… Board of Directors (Board) properly approved and monitored projects. Key Findings The Board did not properly approve and monitor projects and did not: Incorporate job creation and retention … Consequently, the Board cannot determine whether the projects are meeting their intended purposes. While the Board …
https://www.osc.ny.gov/local-government/audits/town/2022/07/15/town-brookhaven-local-development-corporation-project-approval-and-monitoring-2021mBinghamton Housing Authority – Oversight of Financial Operations (2022M-87)
… Payments totaling approximately $152,000 (22 percent) of what we tested were not approved by anyone other than the … was not properly administered; all nine users had access to all of the financial modules in the system. Therefore, a … compensating controls. Assign financial system user access rights based on job duties. Officials generally agreed with …
https://www.osc.ny.gov/local-government/audits/public-authority/2022/09/09/binghamton-housing-authority-oversight-financial-operations-2022m-87Union Springs Central School District - Safeguarding of Personal, Private and Sensitive Information on Mobile Computing Devices (2022M-67)
… MCDs to help prevent unauthorized access to PPSI. In addition to sensitive information technology (IT) control … data classification matrix and inventorying PPSI in their possession, to help ensure the proper safeguarding …
https://www.osc.ny.gov/local-government/audits/school-district/2022/09/02/union-springs-central-school-district-safeguarding-personal-private-andVillage of Waterford – Board Oversight (2022M-70)
… - pdf] Audit Objective Determine whether the Village of Waterford (Village) Board (Board) provided adequate oversight of financial operations. Key Findings The Board did not provide adequate oversight of financial operations. Specifically, the Board did not: …
https://www.osc.ny.gov/local-government/audits/village/2022/07/29/village-waterford-board-oversight-2022m-70Somers Central School District – User Accounts and Software Updates (2021M-153)
… against unauthorized use, access and loss. Sensitive IT control weaknesses were communicated confidentially to … Adopt an adequate comprehensive information technology (IT) contingency plan to minimize the risk of data loss or prevent a serious interruption of services. Consequently, in the event …
https://www.osc.ny.gov/local-government/audits/school-district/2022/07/29/somers-central-school-district-user-accounts-and-software-updates-2021mLittle Flower Union Free School District – Fixed Assets (2022M-78)
… and accounted for fixed assets. Key Findings The Board of Education (Board) and District officials did not ensure … June 26, 2018. Poor fixed asset controls and the lack of regular inventory checks contributed to: 231 assets that …
https://www.osc.ny.gov/local-government/audits/school-district/2022/08/12/little-flower-union-free-school-district-fixed-assets-2022m-78Lynbrook Union Free School District – Medicaid Reimbursements (2022M-81)
… Medicaid reimbursements. If all services were provided and the Medicaid claims were properly filed, the District may have realized $10,107 in additional Medicaid … Medicaid claim procedures or provide supervision over the Medicaid claiming process. Did not take steps to identify …
https://www.osc.ny.gov/local-government/audits/school-district/2022/11/10/lynbrook-union-free-school-district-medicaid-reimbursements-2022m-81Coeymans Hollow Fire Corporation – Board Oversight (2022M-84)
… cash receipts records and the Treasurer deposits funds in a timely manner. Perform bank reconciliations for all Company bank accounts. Except as specified in Appendix A, Company officials generally agreed with our … action. Appendix B includes our comments on issues raised in the Company’s response letter. …
https://www.osc.ny.gov/local-government/audits/fire-company-or-department/2022/11/10/coeymans-hollow-fire-corporation-board-oversight-2022m-84City of Oswego – Community Development (2015M-108)
… Purpose of Audit The purpose of our audit was to examine selected City … Community Development Department did not routinely obtain information showing the number of jobs created by its … a process in place to determine when it is appropriate to write off delinquent loans that are uncollectable. The City …
https://www.osc.ny.gov/local-government/audits/city/2015/11/20/city-oswego-community-development-2015m-108