ALBANY – An audit of the information technology user accounts in the Mount Pleasant Central School District found officials did not establish adequate controls over the district’s user accounts to prevent unauthorized use, access and/or loss.
The study by the State Comptroller’s Office said school officials did not monitor compliance with the district’s acceptable use policy and did not adequately manage network user accounts.
The audit recommended the district develop and implement procedures to monitor compliance with the acceptable use policy; develop written procedures for managing system access that include periodically reviewing user access and disabling network user accounts when access is no longer needed; and evaluate all existing network accounts, disable any deemed unnecessary and periodically review for necessity and appropriateness.
District officials generally agreed with the state’s recommendations and initiated or indicated they plan to initiate corrective action.
