ALBANY – The state comptroller’s
office was highly critical of the Onteora Central School District’s
information technology policies, or lack thereof.
The audit was conducted for the period of July 1, 2013 through November
5, 2014.
The report said the school board did not establish an acceptable use policy,
a computer security plan, a disaster recovery plan, policies and procedures
for the disposal of computer equipment or a policy for security awareness
training.
Key recommendations of the Albany report include adopting policies and
procedures related to computer security,
disaster recovery and disposal of computer equipment and ensure that all
network users receive security training.
The auditors said the district should establish a written agreement with
BOCES that states the district’s needs and expectations and specifies
the level of service to be provided by the network support specialist.
They also said the district should establish a comprehensive inventory
policy and maintain up-to-date inventory records.
