Audit Committee Materials-November 2017 Background Image
Table of Contents Table of Contents
Previous Page  14-15 / 264 Next Page
Information
Show Menu
Previous Page 14-15 / 264 Next Page
Page Background

Institution

Report

Release

Date

Recommendation

Responsible Staff

Date

Management’s

Actions to be

Implemented

Revised Date

Management’s

Actions to be

Implemented

# of Changes to

Date

Management's

Actions to be

Implemented

Initial Date of

Internal Audit

Follow-up

Most Recent

Date of Internal

Audit Follow-up

Status

TBR SWIA - Status Report on Internal Audit Recommendations- Community Colleges

(Reports sorted by Status, Institution, Report Release Date)

DSCC 30-Jun-17 Critical points of failure should be further identified and addressed more clearly in the IT Disaster Recovery Plan.

More network diagrams, inventories, calling trees, etc. could be used to specifically identify how systems are

supposed to be organized and the exact procedures needed in various situations. The plan does identify key

applications and discusses the general priorities for restoring IT systems in the event of outages, but more detail

is needed in this area of the plan.

Vice President for Technology

31-Aug-17

30-Nov-17

1

17-Aug-17

Not Yet Due

DSCC 30-Jun-17 A test plan and schedule is needed for the continuous review of the IT Disaster Recovery Plan and its various

components. Various system recovery tests should be performed on a rotating basis and documented.

Personnel cross training is also advised in key areas.

Vice President for Technology

30-Nov-17

0

17-Aug-17

Not Yet Due

NeSCC 21-Jun-17 The department should implement policy 05:08:01 Compensatory Time for all non-exempt employees and

develop procedures to ensure the policy is followed. Management should work with Human Resources to

ensure their procedures comply with policy.

Chief of Police

21-Dec-17

0

Not Yet Due

8