61
results found in
12 ms
Page 2
of 7
ACQUISITION REFORM: DOD Should Streamline Its Decision-Making Process for Weapon Systems to Reduce Inefficiencies
Refinement of decision-making processes The US Department of Defense (DOD) has long sought to improve the efficiency of its weapon system acquisition process, including the time and effort needed to complete the milestone decision process. Good practices of some DOD programs and five commercial firms were used by GAO to look for new momentum in refining the process.
Full description
Refinement of decision-making processes The US Department of Defense (DOD) has long sought to improve the efficiency of its weapon system acquisition process, including the time and effort needed to complete the milestone decision process. Good practices of some DOD programs and five commercial firms were used by GAO to look for new momentum in refining the process.
Full description
US Government Accountability Office
, issued in 2015
Risk cases: $risks.size()
ACQUISITION REFORM: DOD Should Streamline Its Decision-Making Process for Weapon Systems to Reduce Inefficiencies
Refinement of decision-making processes The US Department of Defense (DOD) has long sought to improve the efficiency of its weapon system acquisition process, including the time and effort needed to complete the milestone decision process. Good practices of some DOD programs and five commercial firms were used by GAO to look for new momentum in refining the process.
Full description
Refinement of decision-making processes The US Department of Defense (DOD) has long sought to improve the efficiency of its weapon system acquisition process, including the time and effort needed to complete the milestone decision process. Good practices of some DOD programs and five commercial firms were used by GAO to look for new momentum in refining the process.
Full description
US Government Accountability Office
, issued in 2015
Risk cases: $risks.size()
Performance measurement by regulators
Performance measurement for regulators Primary adressees of this good practice guide - by the British NAO - are regulators, the public institutions established for making sure that an industry or system works legally and fairly. But we are sure that many more can find this guidance useful - including auditors. NAO presents a comprehensible framework for performance measurement and hints how to focus on influence that regulators can use.
Full description
Performance measurement for regulators Primary adressees of this good practice guide - by the British NAO - are regulators, the public institutions established for making sure that an industry or system works legally and fairly. But we are sure that many more can find this guidance useful - including auditors. NAO presents a comprehensible framework for performance measurement and hints how to focus on influence that regulators can use.
Full description
National Audit Office
, issued in 2016
Risk cases: 2
Management of IT security in systems outsourced to external suppliers
Security to be improved in IT processes outsourced to external suppliers When IT processes are outsourced to external suppliers, the authorities no longer have direct control of the IT security, but remain responsible for managing the security of the IT. Authorities that fail to manage IT security actively based on risk assessments, and omit to monitor the implementation of these requirements, will not be able to determine if the level of IT security in the outsourced systems safeguards their systems and data. This is how the conclusion of the Rigsrevisionen starts. The Danish auditors noticed improvement in the audited entities, but they add that tha majority of the auditees: can refine their requirements for and follow-up on access control and logging practices
Full description
Security to be improved in IT processes outsourced to external suppliers When IT processes are outsourced to external suppliers, the authorities no longer have direct control of the IT security, but remain responsible for managing the security of the IT. Authorities that fail to manage IT security actively based on risk assessments, and omit to monitor the implementation of these requirements, will not be able to determine if the level of IT security in the outsourced systems safeguards their systems and data. This is how the conclusion of the Rigsrevisionen starts. The Danish auditors noticed improvement in the audited entities, but they add that tha majority of the auditees: can refine their requirements for and follow-up on access control and logging practices
Full description
National Audit Office of Denmark
, issued in 2016
Risk cases: 3
Correct information at the right time in healthcare and nursing – collaboration without effect?
The Swedish National Audit Office has conducted an audit to determine whether Government initiatives have contributed to the objective that authorised healthcare staff shall have access to the right ... patient information at the right time by means of direct electronic access. ... ... Information share is crucial for competitive health care ... the Government and the municipalities must improve if the investments in better access to common patient information shall get impact in practice. ... Health and social care staff has very limited access to patient information from other care-giving institutions, which may lead to health damage and wrong-treatment. The cooperation between
Full description
The Swedish National Audit Office has conducted an audit to determine whether Government initiatives have contributed to the objective that authorised healthcare staff shall have access to the right ... patient information at the right time by means of direct electronic access. ... ... Information share is crucial for competitive health care ... the Government and the municipalities must improve if the investments in better access to common patient information shall get impact in practice. ... Health and social care staff has very limited access to patient information from other care-giving institutions, which may lead to health damage and wrong-treatment. The cooperation between
Full description
Riksrevisionen (Swedish National Audit Office)
, issued in 2011
Risk cases: 3
Operation of the Hungarian State Holding Company in 2009
The State Audit Office of Hungary audited the Hungarian State Holding Company (hereinafter: HSHC). The aim of the audit was to evaluate if the practice of the property management system ... and activities were in harmony with the goals stipulated by the legislation, if the institutional system established for state property management and utilisation ensured the efficient functioning of the state ... assets and the preservation of its values. ... ... Effective property management requires effective data management ... The State Audit Office of Hungary audited the Hungarian State Holding Company and found that reliable data management is essential for effective property management. The IT project aimed ... at supporting state property management had serious deficiencies in the field of project management. As a consequence of the weaknesses in data management, the chartered accountant refused giving an opinion both ... in 2008 and 2009 as there were no reliable data available for an opinion on the financial report.
Full description
The State Audit Office of Hungary audited the Hungarian State Holding Company (hereinafter: HSHC). The aim of the audit was to evaluate if the practice of the property management system ... and activities were in harmony with the goals stipulated by the legislation, if the institutional system established for state property management and utilisation ensured the efficient functioning of the state ... assets and the preservation of its values. ... ... Effective property management requires effective data management ... The State Audit Office of Hungary audited the Hungarian State Holding Company and found that reliable data management is essential for effective property management. The IT project aimed ... at supporting state property management had serious deficiencies in the field of project management. As a consequence of the weaknesses in data management, the chartered accountant refused giving an opinion both ... in 2008 and 2009 as there were no reliable data available for an opinion on the financial report.
Full description
State Audit Office of Hungary
, issued in 2010
Risk cases: 2
Protection of automatically processed personal data
protection conforms to the data processing practices; - personal data is properly processed at public sector bodies; - the State Data Protection Inspectorate (SDPI) performs sufficient supervision ... Over the past few years, a number of legal, management, supervision, information, and methodological issues related to the protection of personal data have piled up. As they have not been fully ... resolved,the National Audit Office conducted an audit to assess the efficiency of the protection and supervision of automatically processed personal data and to check whether: - the regulation of personal data ... ... Data protection needs a long term strategy ... Rapid development of information and communication technology continuously brings about issues of personal data protection. Due to lack of long-term vision in this area they are frequently ... not addressed by the existing legislation. Moreover, SAI of Lithuania revealed failures in organization and control of personal data protection by public sector.
Full description
protection conforms to the data processing practices; - personal data is properly processed at public sector bodies; - the State Data Protection Inspectorate (SDPI) performs sufficient supervision ... Over the past few years, a number of legal, management, supervision, information, and methodological issues related to the protection of personal data have piled up. As they have not been fully ... resolved,the National Audit Office conducted an audit to assess the efficiency of the protection and supervision of automatically processed personal data and to check whether: - the regulation of personal data ... ... Data protection needs a long term strategy ... Rapid development of information and communication technology continuously brings about issues of personal data protection. Due to lack of long-term vision in this area they are frequently ... not addressed by the existing legislation. Moreover, SAI of Lithuania revealed failures in organization and control of personal data protection by public sector.
Full description
National Audit Office of the Republic of Lithuania
, issued in 2013
Risk cases: 2
THE CYBER SECURITY ENVIRONMENT IN LITHUANIA
) cyber security is ensured in public establishments. During the audit, the SAI Lithuania analysed current regulation, strategic planning and management practices in the field of cyber security ... The purpose of the audit was to assess whether cyber security is being ensured in Lithuania. In view of this goal, we assessed whether: (1) an effective cyber security system has been set up; (2 ... and electronic information security as well as the funds allocated and used in this area. The SAI evaluated whether the cyber security and electronic information security objectives detailed in planning documents ... ... Cyber-security is much more than preventing incidents ... SAI Lithuania determined that the issue of ensuring and increasing cyber security and resilience has not been effectively addressed at the national level. The focus has primarily been on reacting ... to and preventing incidents in cyber space, which means that traditional issues related to electronic information security (confidentiality, integrity, accessibility) have been neglected, and from 2015, not enough ... attention has been paid to development, legislation, improvement of organisational structure, etc. in this field.
Full description
) cyber security is ensured in public establishments. During the audit, the SAI Lithuania analysed current regulation, strategic planning and management practices in the field of cyber security ... The purpose of the audit was to assess whether cyber security is being ensured in Lithuania. In view of this goal, we assessed whether: (1) an effective cyber security system has been set up; (2 ... and electronic information security as well as the funds allocated and used in this area. The SAI evaluated whether the cyber security and electronic information security objectives detailed in planning documents ... ... Cyber-security is much more than preventing incidents ... SAI Lithuania determined that the issue of ensuring and increasing cyber security and resilience has not been effectively addressed at the national level. The focus has primarily been on reacting ... to and preventing incidents in cyber space, which means that traditional issues related to electronic information security (confidentiality, integrity, accessibility) have been neglected, and from 2015, not enough ... attention has been paid to development, legislation, improvement of organisational structure, etc. in this field.
Full description
National Audit Office of the Republic of Lithuania
, issued in 2015
Risk cases: 6
Open Government Data - Are all exceptions to the principle of cost-free access and reuse legitimate?
The United Kingdom, a country seen, like the United States, as a pioneer in open public data, has estimated at £6.8bn (€7,9bn) the revenue in 2010 and 2011 generated for British society by open ... public data, of which £5bn (€5.8bn) is profit. As an example, a start-up has highlighted the existence of areas in which massive savings can be made by analysing prescriptions of patented drugs ... and the corresponding generics.<br/> Such possibilities are not beyond reach for France, which is not only deemed to be among the pioneers but also one of the countries making the most rapid progress in this domain ... ... Open data strategy should decide the costs problem ... French Cour des comptes presents analysis on implementation of the open data practice across the administration. Massive savings are expected, when public access to large amounts of highquality data ... is made easy. France is among the pioneers and countries making the most rapid progress in this domain. Charges for the reuse of the public information has been identified as the main problem.
Full description
The United Kingdom, a country seen, like the United States, as a pioneer in open public data, has estimated at £6.8bn (€7,9bn) the revenue in 2010 and 2011 generated for British society by open ... public data, of which £5bn (€5.8bn) is profit. As an example, a start-up has highlighted the existence of areas in which massive savings can be made by analysing prescriptions of patented drugs ... and the corresponding generics.<br/> Such possibilities are not beyond reach for France, which is not only deemed to be among the pioneers but also one of the countries making the most rapid progress in this domain ... ... Open data strategy should decide the costs problem ... French Cour des comptes presents analysis on implementation of the open data practice across the administration. Massive savings are expected, when public access to large amounts of highquality data ... is made easy. France is among the pioneers and countries making the most rapid progress in this domain. Charges for the reuse of the public information has been identified as the main problem.
Full description
Cour des comptes
, issued in 2013
Risk cases: 1
FEMA Needs to Address Management Weaknesses to Improve Its Systems
Controls in emergency management GAO audited the agency of the Department of Homeland Security, responsible for federal efforts to mitigate, respond to, and recover from disasters. American auditors recommend that the agency fully define its investment board’s roles and responsibilities and procedures for selecting and overseeing investments, update its strategic plan and complete plans for IT modernization, and establish time frames for completing workforce planning efforts. The agency should also establish policies and guidance for implementing key IT management controls.
Full description
Controls in emergency management GAO audited the agency of the Department of Homeland Security, responsible for federal efforts to mitigate, respond to, and recover from disasters. American auditors recommend that the agency fully define its investment board’s roles and responsibilities and procedures for selecting and overseeing investments, update its strategic plan and complete plans for IT modernization, and establish time frames for completing workforce planning efforts. The agency should also establish policies and guidance for implementing key IT management controls.
Full description
General Accountability Office
, issued in 2016
Risk cases: 4