Laserfiche WebLink
Report Highlights May 20, 2021 <br /> County of Hawaii Information Technology <br /> Asset Management Follow-Up <br /> Original Audit Follow-Up Audit <br /> What we found In November of 2015, the Office of the County Auditor <br /> Two key elements of IT asset management issued the audit of the County of Hawaii Information <br /> are the centralization of the IT function and Technology Asset Management and made eleven <br /> the use of an IT asset management role. recommendations. <br /> Without these two elements, the County is at <br /> an increased risk of security concerns, system Management generally agreed with the comments <br /> instability, and helpdesk inefficiencies. and status of recommendations. <br /> What we recommended Objective <br /> We identified the following recommendations To determine if the Department of Information <br /> for management to meet best practices: Technology implemented the 2015 IT asset <br /> 1. DIT should own all IT assets. Furthermore, management recommendations. <br /> an IT asset management role should be <br /> established to manage the County's IT Status of Recommendations <br /> assets including: We tested eleven recommendations and found that <br /> • Developing a financial forecast of management took corrective action as follows: <br /> hardware and software upgrades and <br /> replacements; • Implemented: 4 <br /> • Maintaining an approved software list • In Process: 6 <br /> for standardization; • Not Implemented: 1 <br /> • Identifying re-deployable IT assets; <br /> • Continuing to evaluate leasing as an Hardware & Software Lifecycle Management <br /> option; • Upgrades & Replacements: (1) In Process <br /> • Maintaining a listing of IT assets and <br /> • Purchase Request & Approval: <br /> the assigned users in a centralized (1) In Process and (1) Implemented <br /> database; • Redeployment of Assets: (1) In Process <br /> • Centrally receiving and accepting all • Leasing: (1) Implemented <br /> IT assets; Hardware & Software Inventory Management <br /> • Reconciling IT assets in the IT asset <br /> management inventory; and • Centralized Management System: <br /> Ensuring the disposal of IT assets (1) Implemented and (1) In Process <br /> • • Receiving & Accepting: (1) In Process <br /> occurs in a secured manner. <br /> 2. The County should address gaps in formal • Annual Physical Inventory: (1) Not Implemented <br /> written policies and procedures over IT Hardware & Software Security <br /> practices. <br /> • Secured Disposal: (1) In Process and (1) Implemented <br /> This audit was conducted in accordance with generally accepted government auditing standards. <br />