Reports Search Reports Spatial Search Risk-cases Search Risk-cases Graph Traversal
> Area:"general public services"
Results found in 139 ms
  (Click on a topic/risk node to traverse and access the reports)
weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis no policy too late and too fragmented planning ineffective monitoring regulations' update delayed and incomplete cost related rules not modified nobody responsible for coordination lack of training and practice lack of quality control Topic user-friendliness Risk(s) identified: (Topic : user-friendliness) lack of a clear management model poor investment justification user unfriendly system Topic dry ports Risk(s) identified: (Topic : dry ports) absence of framework lack of a single reliable source of data approvals without cross-analysis of capacity conditions delays by responsible agencies laxity in procedures implementing and incomplete procedures Topic research infrastructure Risk(s) identified: (Topic : research infrastructure) bringing private device, local administrator privileges inadequate framework for the use and management of IT equipment no awareness of existing rules Topic data protection Risk(s) identified: (Topic : data protection) bringing private device, local administrator privileges inadequate framework for the use and management of IT equipment no awareness of existing rules limited verification of data provided by applicants Topic consultants Risk(s) identified: (Topic : consultants) lack of access to all data some business rules switched off limited verification of data provided by applicants staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable insufficient plan, monitoring and control of consultancy work better scrutiny of proposals skills shortages remain in the areas needed strategic workforce planning is under-developed approval without business case limited competition generated direct costs not compared most expensive cases insufficiently monitored supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden business continuity process not implemented lack of staff responsible for IT security acquisition results not monitored lack of objectives to improving IT governance lack of strategic planning Measuring influence on outcomes performance measurement frameworks large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused No control procedures over the agreements with clients Low-grade operational information for governance board postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities poor perception by non-professional users interlinked to a limited degree joint public user testing may help Topic civil service staff Risk(s) identified: (Topic : civil service staff) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality better scrutiny of proposals skills shortages remain in the areas needed strategic workforce planning is under-developed approval without business case limited competition generated direct costs not compared most expensive cases insufficiently monitored supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness weaknesses in critical internal controls data not widely available postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities Topic temporary staff Risk(s) identified: (Topic : temporary staff) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable better scrutiny of proposals skills shortages remain in the areas needed strategic workforce planning is under-developed approval without business case limited competition generated direct costs not compared most expensive cases insufficiently monitored Topic civil service system Risk(s) identified: (Topic : civil service system) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable better scrutiny of proposals skills shortages remain in the areas needed strategic workforce planning is under-developed approval without business case limited competition generated direct costs not compared most expensive cases insufficiently monitored supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities Topic internal control Risk(s) identified: (Topic : internal control) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness weaknesses in critical internal controls data not widely available Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden effective requirements management responsibility management problems legal certainty too long intervals reporting large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused absence of framework lack of a single reliable source of data approvals without cross-analysis of capacity conditions delays by responsible agencies laxity in procedures implementing and incomplete procedures Topic service center Risk(s) identified: (Topic : service center) Failure to take into account the price increase Poor analysis weaknesses in critical internal controls data not widely available No control procedures over the agreements with clients Low-grade operational information for governance board Topic conflicts of interest Risk(s) identified: (Topic : conflicts of interest) not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality Topic job scheduling Risk(s) identified: (Topic : job scheduling) insufficient plan, monitoring and control of consultancy work weaknesses in critical internal controls data not widely available working hours not rearranged working hours not recorded regularly staffing levels not optimised lack of analysis where and when the problem is triggered no IT support Topic government IT agency Risk(s) identified: (Topic : government IT agency) better scrutiny of proposals skills shortages remain in the areas needed strategic workforce planning is under-developed approval without business case limited competition generated direct costs not compared most expensive cases insufficiently monitored not addressed risk unclear responsibility basic security measures supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness Inconsistent strategy Too early responsibility transfer too complex projects ambitious goal prevails over realistic tailoring complexity of some of the key components not fully comprehensive estimations cost estimations not well-documented poor analysis poor policy poor perception by non-professional users interlinked to a limited degree joint public user testing may help unbalanced development of IT systems formal only supervision of IT projects Topic cost estimation Risk(s) identified: (Topic : cost estimation) Strategy lacks clear rules and coordination Reduced ability to coordinate Low usage of the data centre Division of contract Lack of pricing policy Movement of employees to the contractor Lack of efficiency analysis Lack of coordinated strategy No sufficient understanding of the area No cost-effect perspective in funds management Inconsistent strategy Too early responsibility transfer users not satisfied with effectiveness system deficiencies not fully comprehensive estimations cost estimations not well-documented poor analysis poor policy lack of a clear management model poor investment justification user unfriendly system errors from initial study to production stage spendings that could have been avoided overestimated IT needs Topic data centers Risk(s) identified: (Topic : data centers) project risks not assessed adequately No control procedures over the agreements with clients Low-grade operational information for governance board Topic digital transformation Risk(s) identified: (Topic : digital transformation) supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness Topic open data Risk(s) identified: (Topic : open data) supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness weaknesses in critical internal controls data not widely available lack of clear strategy large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused mandatory publication open data at work concrete action plan national information infrastructure lack of coordination and supervision weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis no policy too late and too fragmented planning ineffective monitoring regulations' update delayed and incomplete cost related rules not modified nobody responsible for coordination lack of training and practice lack of quality control Topic digitization Risk(s) identified: (Topic : digitization) supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness high costs and low expertise weak coordination on strategic level information system not introduced lack of common understanding not using electronic documents poor perception by non-professional users interlinked to a limited degree joint public user testing may help Topic measurement of project success Risk(s) identified: (Topic : measurement of project success) Lack of coordinated strategy No sufficient understanding of the area No cost-effect perspective in funds management lack of horizontal coordination within the state administration uncoordinated strategies public procurement irregularities Topic web solution Risk(s) identified: (Topic : web solution) project methodologies contradict Public Procurement procedures supplier lacks experience in public administration strategy not supported by determination and skills Topic emergency preparedness Risk(s) identified: (Topic : emergency preparedness) unclear governance and division of responsibilities insufficient data at coordination level Topic public trust Risk(s) identified: (Topic : public trust) Accountable Transparent Accessible Understandable Topic homelessness Risk(s) identified: (Topic : homelessness) incentives to take up employment spendings increased to reduce the problem incomplete research on how the funds are used Topic government’s key priorities Risk(s) identified: (Topic : government’s key priorities) various public bodies responsible for the same domain demand growing faster than supply Topic cyber security Risk(s) identified: (Topic : cyber security) Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden lacking co-ordination and consistency of education campaigns no clear mechanism to support good practices lack of accurate data criminals continually innovate international and ‘hidden’ nature of online fraud lack of information on judicial outcomes for fraud offences bringing private device, local administrator privileges inadequate framework for the use and management of IT equipment no awareness of existing rules Topic business continuity management Risk(s) identified: (Topic : business continuity management) business continuity process not implemented lack of staff responsible for IT security acquisition results not monitored lack of objectives to improving IT governance lack of strategic planning Topic local government-owned companies Risk(s) identified: (Topic : local government-owned companies) less internal control and no internal audit Topic database Risk(s) identified: (Topic : database) lacking co-ordination and consistency of education campaigns no clear mechanism to support good practices lack of accurate data criminals continually innovate international and ‘hidden’ nature of online fraud lack of information on judicial outcomes for fraud offences Topic regulators Risk(s) identified: (Topic : regulators) Measuring influence on outcomes performance measurement frameworks Topic population register Risk(s) identified: (Topic : population register) more knowledge of the risks is necessary IT tools old and inadequate no tools for investigating and dealing with some errors low knowledge of the register's quality Topic vendor lockin Risk(s) identified: (Topic : vendor lockin) effective requirements management responsibility management problems legal certainty too long intervals reporting Topic education institutions' premises Risk(s) identified: (Topic : education institutions' premises) few cases of entities having targets for costs and use applying commercial type of competitive rules to educational entity Topic product marking Risk(s) identified: (Topic : product marking) large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused Topic information society Risk(s) identified: (Topic : information society) large number of public-sector actors are involved in policy making complexity of the regulations divided resources Area general public services Topic cyber-security Risk(s) identified: (Topic : cyber-security) too many domain administrators insufficient frequency of changing passwords for systems and service accounts no segregation of duties regarding access to the logging system no regular review of log files not addressed risk unclear responsibility basic security measures list of controls to mitigate risks mandatory strategies implemented incompletely lack of periodic assessment and review complexity of the main programme lack of effective revision unclear responsibility division planning without some of key contributors security measures not implemented infrastructure not prepared Topic application controls Risk(s) identified: (Topic : application controls) too many domain administrators insufficient frequency of changing passwords for systems and service accounts no segregation of duties regarding access to the logging system no regular review of log files lack of access to all data some business rules switched off limited verification of data provided by applicants no clearly defined strategy insufficiently regulated outsourcing incomplete security management system poor control mechanisms Topic legacy systems Risk(s) identified: (Topic : legacy systems) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness Topic management dashboard Risk(s) identified: (Topic : management dashboard) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified Topic agile projects Risk(s) identified: (Topic : agile projects) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness Topic data center consolidation Risk(s) identified: (Topic : data center consolidation) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified Topic indicative Risk(s) identified: (Topic : indicative) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified lack of access to all data some business rules switched off limited verification of data provided by applicants not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality better scrutiny of proposals skills shortages remain in the areas needed strategic workforce planning is under-developed approval without business case limited competition generated direct costs not compared most expensive cases insufficiently monitored supported exemplars framework of standards and guidance not sustained uncertainty about guidance insufficient user friendliness weaknesses in critical internal controls data not widely available unclear governance and division of responsibilities insufficient data at coordination level incentives to take up employment spendings increased to reduce the problem incomplete research on how the funds are used various public bodies responsible for the same domain demand growing faster than supply Task not implemented in the processes of the organisation Insufficient conditions by Government Costs of the activity unknown building good information security is a heavy burden business continuity process not implemented lack of staff responsible for IT security acquisition results not monitored lack of objectives to improving IT governance lack of strategic planning more knowledge of the risks is necessary IT tools old and inadequate no tools for investigating and dealing with some errors low knowledge of the register's quality large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused No control procedures over the agreements with clients Low-grade operational information for governance board postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities mandatory publication open data at work concrete action plan national information infrastructure poor perception by non-professional users interlinked to a limited degree joint public user testing may help lack of coordination and supervision weak cooperation between institutions lack of information about state's owned data and common cooperation principles data integration on a voluntary basis no policy too late and too fragmented planning ineffective monitoring regulations' update delayed and incomplete cost related rules not modified nobody responsible for coordination lack of training and practice lack of quality control