My WebLink
|
Help
|
About
|
Sign Out
Home
2013-COH - Single Audit of Federal Financial Assistance Programs
PublicDocuments
>
Legislative Auditor
>
Audit Reports
>
Single Audit Reports
>
2013-COH - Single Audit of Federal Financial Assistance Programs
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
4/3/2023 4:15:43 PM
Creation date
4/3/2023 4:13:21 PM
Metadata
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
33
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
County of Hawaii <br />State of Hawaii <br />Schedule of Findings and Questioned Costs <br />Year Ended June 30, 2013 <br />Criteria <br />When IT is used to initiate, record, process, and report on transactions included in the financial <br />statements, the systems and related processes should include internal controls to prevent or detect <br />potential misstatements. <br />Effect <br />Internal controls in the following areas address the following risks: <br />Physical and logical security <br />Unauthorized access to these systems could result in either the destruction or theft of data, unauthorized <br />or nonexistent transactions being made or transactions being inaccurately recorded. <br />Cage management <br />Unauthorized or untested changes promoted to the production environment could cause the systems <br />to either process data differently than intended or unexpectedly compromise the integrity of the data <br />maintained. <br />IT Operations <br />Lack of restoration testing could result in the inability to recover from data loss, corruption, or data <br />integrity concerns. <br />Causes <br />The primary cause of the internal control deficiencies identified was due to the lack of IT policies and <br />procedures which include internal controls to address the IT risks discussed above. <br />Recommendation <br />We recommend that the County perform the following: <br />• Develop and implement IT policies and procedures to include internal control procedures addressing <br />the IT risks above. <br />• Indentify procedures to ensure that IT policies and procedures are consistently followed. <br />• Implement change management detective controls. <br />• Perform annual test restoration exercises. <br />22 <br />
The URL can be used to link to this page
Your browser does not support the video tag.