Reports Search Reports Spatial Search Risk-cases Search Risk-cases Graph Traversal
> Area:"social protection"

Report Facets

Area
Results found in 24 ms
  (Click on a topic/risk node to traverse and access the reports)
Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden Topic cyber security Risk(s) identified: (Topic : cyber security) Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden Topic user-friendliness Risk(s) identified: (Topic : user-friendliness) information of the services is missing from the websites users are forced to re-enter data Topic web solution Risk(s) identified: (Topic : web solution) information of the services is missing from the websites users are forced to re-enter data Topic phasing out old systems Risk(s) identified: (Topic : phasing out old systems) "no change" strategy "enhance and maintain" strategy "replace" strategy poor cooperation and coordination high cost and lack of documentation poor financial coordiantion Topic application controls Risk(s) identified: (Topic : application controls) no input controls and poor monitoring defective identifying of addressee ineffective processing controls of the IT system poor integration among various sets of data poor log analysis no systemic care about data protection not fully reliable controls of data transfer IT processes not adequately managed Topic IT architecture Risk(s) identified: (Topic : IT architecture) registers are not interconnected insufficient guidance on how to apply the legislation sharing information with all parties limited an important clients' group is not covered by the information system lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic large scale undertaking Risk(s) identified: (Topic : large scale undertaking) savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic interoperability Risk(s) identified: (Topic : interoperability) insufficient guidance on how to apply the legislation sharing information with all parties limited an important clients' group is not covered by the information system poor cooperation and coordination high cost and lack of documentation poor financial coordiantion Unconnected systems Two systems perform similar calculations with different accuracy Competition rules bypassed lack of coordination and supervision weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis Topic cost estimation Risk(s) identified: (Topic : cost estimation) outdated study precedence given to speed of processing insufficient data on size of incorrect payments Topic system maintenance Risk(s) identified: (Topic : system maintenance) data handover-takover not regulated properly frequent change of regulations Topic large scale project Risk(s) identified: (Topic : large scale project) Unconnected systems Two systems perform similar calculations with different accuracy Competition rules bypassed Topic personal data protection Risk(s) identified: (Topic : personal data protection) mandatory publication open data at work concrete action plan national information infrastructure lack of coordination and supervision weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis Topic information society Risk(s) identified: (Topic : information society) lack of coordination and supervision weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis Topic repayments Risk(s) identified: (Topic : repayments) regulatory changes require time to be implemented missed deadline of repayment Too narrow basis of regulatory changes unclear definition of responsibility Area social protection Topic legacy systems Risk(s) identified: (Topic : legacy systems) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified governance: roles and responsibilities not fully defined planning documents incomplete lack of longterm HR strategy key management controls not fully implemented lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic management dashboard Risk(s) identified: (Topic : management dashboard) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance Topic agile projects Risk(s) identified: (Topic : agile projects) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance Topic data center consolidation Risk(s) identified: (Topic : data center consolidation) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance Topic indicative Risk(s) identified: (Topic : indicative) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified weaknesses in critical internal controls data not widely available governance: roles and responsibilities not fully defined planning documents incomplete lack of longterm HR strategy key management controls not fully implemented Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change mandatory publication open data at work concrete action plan national information infrastructure lack of coordination and supervision weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis regulatory changes require time to be implemented missed deadline of repayment Too narrow basis of regulatory changes unclear definition of responsibility Topic directive Risk(s) identified: (Topic : directive) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified weaknesses in critical internal controls data not widely available governance: roles and responsibilities not fully defined planning documents incomplete lack of longterm HR strategy key management controls not fully implemented Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change mandatory publication open data at work concrete action plan national information infrastructure Topic government IT agency Risk(s) identified: (Topic : government IT agency) poor quality of data protection policy poor risk analysis insufficient screening of positions with access to confidential information information of the services is missing from the websites users are forced to re-enter data Topic database Risk(s) identified: (Topic : database) lack of strategic leader only few e-services are developed unrealistic schedule no input controls and poor monitoring defective identifying of addressee ineffective processing controls of the IT system poor integration among various sets of data registers are not interconnected poor log analysis no systemic care about data protection data handover-takover not regulated properly frequent change of regulations Topic measurement of project success Risk(s) identified: (Topic : measurement of project success) lack of strategic leader only few e-services are developed unrealistic schedule IT-unaware legislation unclear objectives and no cost monitoring many separate systems maintained outdated study precedence given to speed of processing insufficient data on size of incorrect payments lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic internal control Risk(s) identified: (Topic : internal control) weaknesses in critical internal controls data not widely available governance: roles and responsibilities not fully defined planning documents incomplete lack of longterm HR strategy key management controls not fully implemented Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic civil service staff Risk(s) identified: (Topic : civil service staff) weaknesses in critical internal controls data not widely available Topic open data Risk(s) identified: (Topic : open data) weaknesses in critical internal controls data not widely available mandatory publication open data at work concrete action plan national information infrastructure lack of coordination and supervision weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis Topic service center Risk(s) identified: (Topic : service center) weaknesses in critical internal controls data not widely available Topic job scheduling Risk(s) identified: (Topic : job scheduling) weaknesses in critical internal controls data not widely available Topic performance measurement Risk(s) identified: (Topic : performance measurement) weaknesses in critical internal controls data not widely available Topic business continuity management Risk(s) identified: (Topic : business continuity management) governance: roles and responsibilities not fully defined planning documents incomplete lack of longterm HR strategy key management controls not fully implemented lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic consultants Risk(s) identified: (Topic : consultants) Task not implemented in the processes of the organisation