JEFFERSON CITY, Mo. — A report released today by State Auditor Nicole Galloway provides recommendations for improving controls over information technology (IT) management at several Missouri state agencies. The Office of Administration Information Technology Services Division (ITSD) audit rated “good”; The ITSD is responsible for the coordination and provision of IT services to state agencies within the executive branch.
“Effective management of information technology is essential for government agencies to provide the best level of service to taxpayers,” said Auditor Galloway. “Our audit provides recommendations to the division of the state whose primary role is to coordinate and deliver IT services, and I encourage the ITSD to implement these measures to better serve Missourians.”
The audit found that agreements between ITSD and state agencies to provide services are not complete or current. These concerns have also been noted in previous audits of the division. The report recommends that the ITSD continue to develop new service level agreements with agencies.
While the ITSD has worked with agencies to complete contingency plans for specific agency systems, the division has not formally adopted or documented an enterprise-wide contingency planning policy. . The audit recommends such a policy to further guide the development of comprehensive agency plans and to guide enterprise-wide decisions, such as minimizing operational issues if multiple plans are exercised at the same time.
The audit also found that the ITSD has not developed records management and retention policies in accordance with guidance provided by the Missouri Secretary of State’s Records Services Division. These guidelines, which have been approved by the Missouri State Records Commission, recommend that government entities have written policies on email retention. The report recommends developing written policies to comply with the guidelines.
A copy of the full audit is available here.