Reports Search Reports Spatial Search Risk-cases Search Risk-cases Graph Traversal
> Area:"health"
Results found in 107 ms
  (Click on a topic/risk node to traverse and access the reports)
Area health Topic cyber-security Risk(s) identified: (Topic : cyber-security) too many domain administrators insufficient frequency of changing passwords for systems and service accounts no segregation of duties regarding access to the logging system no regular review of log files Topic application controls Risk(s) identified: (Topic : application controls) too many domain administrators insufficient frequency of changing passwords for systems and service accounts no segregation of duties regarding access to the logging system no regular review of log files lack of access to all data some business rules switched off limited verification of data provided by applicants technology limitation and staff shortages technology limitation technology limitations and lack of effective monitoring of funds increase of workload administrative and organizational burden inadequate equipment Topic agile projects Risk(s) identified: (Topic : agile projects) poor team work poor prerequesites deficit of customers' trust official practices may not suport 'agile' projects many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance Topic legacy systems Risk(s) identified: (Topic : legacy systems) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic management dashboard Risk(s) identified: (Topic : management dashboard) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance Topic data center consolidation Risk(s) identified: (Topic : data center consolidation) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance Topic indicative Risk(s) identified: (Topic : indicative) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified lack of access to all data some business rules switched off limited verification of data provided by applicants not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality weaknesses in critical internal controls data not widely available unclear governance and division of responsibilities insufficient data at coordination level incentives to take up employment spendings increased to reduce the problem incomplete research on how the funds are used savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused No control procedures over the agreements with clients Low-grade operational information for governance board postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change mandatory publication open data at work concrete action plan national information infrastructure absence of framework lack of a single reliable source of data approvals without cross-analysis of capacity conditions delays by responsible agencies laxity in procedures implementing and incomplete procedures Topic directive Risk(s) identified: (Topic : directive) many use outdated software languages and hardware lack of consistent risk analysis One of goals not identified not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality weaknesses in critical internal controls data not widely available Accountable Transparent Accessible Understandable incentives to take up employment spendings increased to reduce the problem incomplete research on how the funds are used savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance Measuring influence on outcomes performance measurement frameworks large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change mandatory publication open data at work concrete action plan national information infrastructure Topic personal data protection Risk(s) identified: (Topic : personal data protection) lack of long-term strategy imperfect organization and control of personal data processing deficiencies in basic security measures against cyber attacks need to monitor the use of privileged user access rights inadequate logging mandatory publication open data at work concrete action plan national information infrastructure Topic taxation systems Risk(s) identified: (Topic : taxation systems) lack of access to all data some business rules switched off limited verification of data provided by applicants postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities Topic small business Risk(s) identified: (Topic : small business) lack of access to all data some business rules switched off limited verification of data provided by applicants Topic interoperability Risk(s) identified: (Topic : interoperability) lack of access to all data some business rules switched off limited verification of data provided by applicants large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused lack of horizontal coordination within the state administration uncoordinated strategies public procurement irregularities insufficient guidance on how to apply the legislation sharing information with all parties limited an important clients' group is not covered by the information system poor cooperation and coordination high cost and lack of documentation poor financial coordiantion Topic user friendliness Risk(s) identified: (Topic : user friendliness) lack of access to all data some business rules switched off limited verification of data provided by applicants large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused Topic performance measurement Risk(s) identified: (Topic : performance measurement) lack of access to all data some business rules switched off limited verification of data provided by applicants weaknesses in critical internal controls data not widely available Accountable Transparent Accessible Understandable Measuring influence on outcomes performance measurement frameworks No control procedures over the agreements with clients Low-grade operational information for governance board postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities absence of framework lack of a single reliable source of data approvals without cross-analysis of capacity conditions delays by responsible agencies laxity in procedures implementing and incomplete procedures Topic compliance costs Risk(s) identified: (Topic : compliance costs) lack of access to all data some business rules switched off limited verification of data provided by applicants Topic consultants Risk(s) identified: (Topic : consultants) lack of access to all data some business rules switched off limited verification of data provided by applicants staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable Measuring influence on outcomes performance measurement frameworks large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused No control procedures over the agreements with clients Low-grade operational information for governance board postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities Topic civil service staff Risk(s) identified: (Topic : civil service staff) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality weaknesses in critical internal controls data not widely available postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities Topic temporary staff Risk(s) identified: (Topic : temporary staff) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable Topic civil service system Risk(s) identified: (Topic : civil service system) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable postings and promotions not giving sufficient weight to skills evaluations focus on the individual experience not on broader impact data weaknesses overemphasis on classroom-based training difficulties in recruiting skilled staff devolved responsibilities Topic internal control Risk(s) identified: (Topic : internal control) staff reduced number of staff reduced by minimising recruitment long-term operating models not set no information on workforce's skills entities’ workforce information is incomplete and not comparable not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality weaknesses in critical internal controls data not widely available savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change absence of framework lack of a single reliable source of data approvals without cross-analysis of capacity conditions delays by responsible agencies laxity in procedures implementing and incomplete procedures Topic conflicts of interest Risk(s) identified: (Topic : conflicts of interest) not recognising the risk of interest conflicts system is increasing likelihood of conflicts of interest personal benefits to be clearly prohibited special care about public investment priorities setting procurement practices recruiting family members movement of staff between government and private company lack of transparence in gifts and hospitality Topic government IT agency Risk(s) identified: (Topic : government IT agency) poor quality of data protection policy poor risk analysis insufficient screening of positions with access to confidential information Topic database Risk(s) identified: (Topic : database) lack of strategic leader only few e-services are developed unrealistic schedule planning without some of key contributors Incomplete analysis and pre-testing technology limitation and staff shortages technology limitation technology limitations and lack of effective monitoring of funds increase of workload administrative and organizational burden inadequate equipment Topic measurement of project success Risk(s) identified: (Topic : measurement of project success) lack of strategic leader only few e-services are developed unrealistic schedule IT-unaware legislation unclear objectives and no cost monitoring many separate systems maintained Lack of concept how to reduce expenditure lack of horizontal coordination within the state administration uncoordinated strategies public procurement irregularities lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change poor project management flaws in planning Delays in seting up information security governance Topic large scale project Risk(s) identified: (Topic : large scale project) unclear responsibilities promising solution abandoned without substantiation outdated technologies upgraded poor financial control expenses timeline not planned planning without some of key contributors Incomplete analysis and pre-testing Topic open data Risk(s) identified: (Topic : open data) weaknesses in critical internal controls data not widely available large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused mandatory publication open data at work concrete action plan national information infrastructure Topic service center Risk(s) identified: (Topic : service center) weaknesses in critical internal controls data not widely available No control procedures over the agreements with clients Low-grade operational information for governance board Topic job scheduling Risk(s) identified: (Topic : job scheduling) weaknesses in critical internal controls data not widely available Topic emergency preparedness Risk(s) identified: (Topic : emergency preparedness) unclear governance and division of responsibilities insufficient data at coordination level Topic public trust Risk(s) identified: (Topic : public trust) Accountable Transparent Accessible Understandable Topic homelessness Risk(s) identified: (Topic : homelessness) incentives to take up employment spendings increased to reduce the problem incomplete research on how the funds are used Topic organization's IT services Risk(s) identified: (Topic : organization's IT services) poor concept poor regulation not all prerequesites in place Topic large scale undertaking Risk(s) identified: (Topic : large scale undertaking) savings goals not planned insufficient quality and frequency of risk analysis different interpretations of guidance lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic cost estimation Risk(s) identified: (Topic : cost estimation) Lack of concept how to reduce expenditure Topic regulators Risk(s) identified: (Topic : regulators) Measuring influence on outcomes performance measurement frameworks Topic product marking Risk(s) identified: (Topic : product marking) large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused Topic information society Risk(s) identified: (Topic : information society) large number of public-sector actors are involved in policy making complexity of the regulations divided resources no role for end-users data and information systems are underused Topic data centers Risk(s) identified: (Topic : data centers) No control procedures over the agreements with clients Low-grade operational information for governance board Topic IT architecture Risk(s) identified: (Topic : IT architecture) insufficient guidance on how to apply the legislation sharing information with all parties limited an important clients' group is not covered by the information system lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic phasing out old systems Risk(s) identified: (Topic : phasing out old systems) poor cooperation and coordination high cost and lack of documentation poor financial coordiantion Topic business continuity management Risk(s) identified: (Topic : business continuity management) lack of effective measurement tools to determine progress lack of updated and comprehensive plans lack of analysis of the significant organizational change Topic user-friendliness Risk(s) identified: (Topic : user-friendliness) technology limitation and staff shortages technology limitation technology limitations and lack of effective monitoring of funds increase of workload administrative and organizational burden inadequate equipment Topic dry ports Risk(s) identified: (Topic : dry ports) absence of framework lack of a single reliable source of data approvals without cross-analysis of capacity conditions delays by responsible agencies laxity in procedures implementing and incomplete procedures