The Department of Information Technology and Telecommunications (DoITT) manages the
Department of Finance's system software and hardware. The audit determines that the Department has adequate controls
to protect both its mainframe and network environments. Security matters should be addressed such as the mainframe
environment containing the Department's information protection policies and procedures are not consolidated in one
document. In addition, there is no agency virus response plan.
From an audit conducted on the Financial Management System at the Financial Information Services Agency, it was found that the agency has adequate controls to protect its records from unauthorized access. However, the agency should provide substantial training to its security officers and establish a log to record requests from agencies who require special access rights.
From an audit conducted on the Administration for Children's Services, it was found that the administration's oversight of day care centers is ineffective and lacks an efficient approach to overseeing the fiscal requirements of the day cares.
From an audit conducted on the New York County Public Administrator's Office, it was concluded that the office complied with most of the provisions of Article 11 of the New York State Surrogate's Court Procedures Act, the Report and Guidelines of the Administrative Board for the Offices of the Public Administrators, and other applicable laws, rules, and regulations. However, the office needs to adequately manage assets, follow certain provisions thoroughly, use the suspense account strictly for work purposes, and correct timekeeping errors.
This audit determines whether the Public Safety Agencies, such as the Fire Department, the Police Department, the Department of Probation, and the Department of Juvenile Justice, have implented recommendations for monitoring employees who use city or personally owned vehicles while conducting city business. From the results, all listed agencies have improved their monitoring and continue to move forward to ensure driver safety.
This audit conducted on the Roosevelt Island Operating Coorporation determines whether the cooporation financed and maintained the landmarks at Roosevelt Island. All landmarks received attempts to obtain funding, but only four out of the five landmarks were adequately maintained. The corporation promised to stabilize all landmarks and further rehabilitate the island.
From an audit done on the Department of Transportation in 2003, the department assured that private ferry operators complied with the provisions of their Permits and License Agreements. The department also took recommendations into account and stated that fees and bills will be properly adjusted in the upcoming fiscal year.
From an audit done on the NYCServ Project, aimed at consolidating the Department of Finance's customer services, the project complied with requirement and laws and is available for innovation. However, the implementation of the product has been delayed, as certain applications and concerns have not been implemented or addressed.
From an audit conducted on the Department of Health and Mental Hygiene, it was determined that the department's Electronic Death Registration System is not functional. It could not be determined whether business and system requirements and goals were met and whether the design allows for innovation. In addition, reports of the system's development were falsified and the development was not checked for quality assurance. The department must follow rules and provisions to address these issues.
From an audit conducted on the Department of Health and Mental Hygiene, it was found that the department's Disease-Tracking System, the Person Registry Information Management Environment system, is obsolete and was terminated. The system did not meet its business and system requirements, seek advice from quality consultants, or comply with Procurement Policy Board regulations.