Financial Audit Division Report 05-55 | Released December 7, 2005 |
Conclusion: Even though the Office of Enterprise Technology deployed multiple layers of security, data stored on the state’s central mainframe computers was still vulnerable to loss, tampering, and unauthorized disclosure. Key Findings:
|
Audit Scope:
Audit Period: Audit Scope: Background: The Office of Enterprise Technology (OET) is responsible for managing the central mainframe computing facility, which houses some of the state’s most important business systems and data. The complexity of the mainframe environment makes it difficult to secure. Thousands of software products run on the mainframe computers, any of which could affect security. The 2005 Legislature created OET to provide technology leadership and oversight for state government. The new agency began operations on July 1, 2005, assuming the staff and resources of the Minnesota Office of Technology and the InterTechnologies Group, both former divisions of the Department of Administration. The Legislature placed OET under the direction of a Chief Information Officer, a cabinet-level position appointed by the Governor. |