Jail Management System - Maricopa County

More documents

Recommendations

Info

Issue 1 IT Control Environment Summary The Maricopa County Sheriff’s Office (MCSO) information technology (IT) control environment generally follows industry standards in key areas. Criteria COBIT, an international, generally–accepted, IT control framework, gives guidance about control requirements, technical issues, and business risks. Internal Audit uses COBIT as an authority for good IT control practices. The COBIT framework recommends: Defining and implementing a technology infrastructure plan, architecture, and standards that leverage technology opportunities Establishing transparent, flexible, and responsive IT organizational structures, and defining and implementing IT processes Segregating responsibilities throughout the enterprise Establishing preventative and detective controls to protect information systems and technology from malware (e.g., viruses, worms, spyware, and spam) Implementing automated solutions to support source code management and change migration between production environments Meeting operational service levels for scheduled data processing, protecting sensitive output, and monitoring and maintaining infrastructure Establishing interface controls to ensure the accuracy and completeness of data transfers Establishing backup controls to ensure data availability Establishing procedures to identify, resolve, and document system and application issues Maricopa County Internal Audit 7 Jail Management System–May 2012
Condition Through observation, limited testing, and interviews, we determined that the following key IT controls generally followed the COBIT framework. Information Architecture Roles and Responsibilities IT Controls Reviewed that Appear to be Adequate Area Description MCSO uses the National Crime Information Center (NCIC) and the Arizona Criminal Justice Information System (ACJIS) for developing applications to interface with state and federal systems. MCSO has defined roles and responsibilities for supporting IT and information security responsibilities. Super User Access JMS super user access appears appropriate. Computer Virus Protection Version Control Software Batch Processing and Job Scheduling MCSO maintains computer virus protection software for workstations and servers. During the testing period, virus definitions were updated daily. MCSO uses version control software to help manage and control the development and migration of software and configuration changes. MCSO batch and job scheduling procedures are in place and appear adequate. System Interfaces MCSO system interfaces appear adequately controlled through the Integrated Criminal Justice Information System (ICJIS). Tape Backups MCSO performs regular backups and rotates its backups between its primary data centers. Problem Management MCSO tracks, responds, and documents help desk activity. Recommendation None, for information only. Maricopa County Internal Audit 8 Jail Management System–May 2012
Page 1 and 2: A Report to the Board of Supervisor
Page 3 and 4: 301 West Jefferson St Suite 660 Phx
Page 5 and 6: Introduction Background The Jail Ma
Page 7 and 8: JMS Environment Because JMS is a mi
Page 9: (Blank Page) Maricopa County Intern
Page 13 and 14: Issue 3 Personnel Screening and Acc
Page 15 and 16: Issue 4 Change Management Summary M
Page 17 and 18: Recommendations MCSO should conside
Page 19 and 20: Sheriff’s Office Response Maricop
Page 21 and 22: Jail Management System (JMS) Sherif

Jail Management System - Maricopa County

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?