My WebLink
|
Help
|
About
|
Sign Out
Home
2021 May 20 - Follow-Up Report: County of Hawaii Information Technology Asset Management
PublicDocuments
>
Legislative Auditor
>
Audit Reports
>
County Auditor Reports
>
2021 May 20 - Follow-Up Report: County of Hawaii Information Technology Asset Management
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
5/20/2021 2:12:44 PM
Creation date
5/20/2021 1:01:21 PM
Metadata
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
22
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
Hardware and Software Inventory Management <br /> <br />Recommendation # 5. Centralized Management System Status: Implemented <br />We recommend DIT track users in a centralized database. Not tracking users in a centralized database may increase the County's security exposure since DIT may not be able to determine if computers are in use or locate assets. In addition, DIT may have difficulty holding employees accountable for the protection of assets and inappropriate activities. Unused computers are candidates for redeployment and may unnecessarily consume software licenses. From a software compliance perspective, software end-user licensing agreements can be tied to users instead of computers, and DIT may not be able to determine the appropriate license counts without knowing the assigned users. <br />The fixed assets inventory system is not accessible to DIT and the automated network and software inventory system is not used to track the user. <br /> <br />Auditee Action: We observed Lansweeper, an automated software program used to monitor asset data information, network security, software updates, and patches for: <br />1,408 users <br />1,449 devices <br />Flagging computers/devices not seen in the network in the last 30/60/90 days <br />Flagging users’ access upon separation from the County every two weeks <br />Flagging and redeploying local or cloud-based software licenses (Microsoft/Adobe) when computers become inoperable, or user separates from the County <br />Blocking at-risk devices from the network <br />Pushing out security updates and patches <br />Restricting most user’s administrative rights. <br />Reporting discrepancies to department IT liaisons <br /> <br /> IT Asset Management Follow-up Audit Status of Recommendations page 6 <br />
The URL can be used to link to this page
Your browser does not support the video tag.