Laserfiche WebLink
2. Purchase Request and <br /> Approval <br /> We recommend DIT implement We reviewed 137 approved and In Process <br /> a policy to maintain an approved disapproved software listings and found <br /> software listing and DIT has a process of maintaining an <br /> communicate the risks to the approved software listing and <br /> departments. The policy should communicates the risk in their Hawaii <br /> include an annual review of the County Security Handbook that provides <br /> listing to ensure that software guidance on, 'What you need to know to <br /> listed is still relevant and does stay safe while computing, and help <br /> not pose a security concern to protect the County's IT assets." <br /> the County. A review process <br /> should be implemented to To fully meet best practices, DIT should <br /> respond to requests for software address current software approval <br /> titles that are not currently in the processes including an annual review in <br /> supported software listing. DIT Employee Policies. <br /> We also recommend DIT We reviewed DIT Employee Policies' Implemented <br /> update the County-Issued Electronic Resources Policy(March 2020) <br /> Technology Device policy to prohibiting: <br /> include prohibiting users from <br /> installing non-supported • "Engaging in disruptive or <br /> software and adding un- malicious activities such as <br /> n <br /> unauthorized software, hardware, <br /> approved devices to the County <br /> network. or data modification." <br /> • "Installing or downloading software <br /> not approved and/or licensed to <br /> the County." <br /> IT Asset Management Follow-up Audit Status of Recommendations 13 <br />