Denver Direct: Denver IT audit reveals City at risk for 7 years
skip to main |
skip to sidebar
Friday, April 6, 2012
Denver IT audit reveals City at risk for 7 years
Figure 4 – Equipment not protected from people or object |
Dennis Gallagher, Denver’s astute City Auditor, has opened the lid on Denver’s seriously lacking Information Technology department. You can download the report here (pdf), or you can read it online here. Photos and quotes that follow are from the report.
FINDING 1
…We found conditions indicating that the City has weak information security awareness and is lacking strong leadership and authority for information security governance.
As an illustration of this issue, for almost half of the eighteen sites we sampled throughout the City, we identified one or more of the following conditions: Network equipment is not physically protected from access by the general public, Network equipment is mounted precariously or not protected from contact with people or objects, The general public has inappropriate access to portions of the City’s internal data network
Door to equipment room open, no lock. Additionally, we found the following conditions that inhibit the ability to ensure the confidentially, integrity, and availability of City business systems: Network equipment is installed in environmentally harsh conditions without temperature monitoring or regulation, and subject to adverse and extreme temperature ranges, Audible alarms signaling temperatures out of tolerance within equipment rooms are not monitored, Computers are installed with access to sensitive networks in areas allowing direct physical access to hardware by prisoners incarcerated by the City and County of Denver Prisoners are allowed physical access to alter computer configuration settings Prisoners are allowed to make to make unauthorized access attempts to the Internet which results in continuous system maintenance and configuration corrections (emphasis added), Areas where network equipment is received, tested, and configured are open to the general public, Network monitoring software is accessible by any internal user, Wireless access points are not installed for optimal performance.
at 4:03 PM
Post Comments (Atom)
Editor's note.
BLOG ARCHIVE
-
▼
2012 (274)-
▼
April (26)- What will be the fate of the elevated section of I...
- May 1 - General Strike in Denver this Tuesday
- Unhappy Campers: Westword is Denver's best in-dept...
- Toll Road Legislation Pulled
- McKinley's Hemp Bill passes in the Colorado House
- Neighborhood Crime Alert!
- Earth Week Festival
- Annual HD8 Spaghetti Dinner
- Heads-up on High St at 16th Ave
- Colorado House Appropriations Committee hearing on...
- Burglary Sex Assault in Northeast Park Hill
- Crocs recycling
- City-wide Denver Neighborhood Organization Votes, ...
- Tech Note: Grinding to a halt
- GONZO FIRST AMENDMENT WEED
- Colorado telecommunications workers watch contract...
- Private Reception with Lord Christopher Monckton
- Colorado Legislators with ALEC Ties
- Road Home Collection Meter
- Parks: Ruby Hill Alcohol Sales and Rules Revisions...
- From Occupy Denver re Camping Ban
- Denver IT audit reveals City at risk for 7 years
- Denver City Councilwoman Kneich on Homeless
- Considering Homelessness
- Seasonal Street Sweeping Starts Tomorrow
- Criminalizing homelessness
-
CONTACT US
CREATIVE COMMONS LICENSE
All of the work on this site, including the original YouTube videos by www.DenverDirect.tv, is licensed under a Creative Commons Attribution-Share Alike 3.0 United States License. Click on the symbol above for explanation.
0 comments:
Post a Comment