Organization: | Office of the State Auditor |
---|---|
Date published: | October 29, 2021 |
Executive Summary
In accordance with Section 12 of Chapter 11 of the Massachusetts General Laws, the Office of the State Auditor has conducted a performance audit of the Attorney General’s Office (AGO) for the period July 1, 2018 through July 31, 2020. In this performance audit, we reviewed AGO’s cybersecurity awareness training and practices to determine whether all employees had completed cybersecurity awareness training and signed information technology policies.
Below is a summary of our finding and our recommendations, with links to each page listed.
AGO did not offer cybersecurity awareness training during a portion of the audit period. |
|
|
Post-Audit Action
During the audit, AGO management provided the audit team with the agency’s then-current draft of its cybersecurity awareness training policy. Our review of this draft policy indicated that AGO had addressed the concern discussed in the audit report regarding the lack of training for employees, such as student interns, who were compensated outside the Human Resources Compensation Management System during the audit period. It did so by including these employees in future trainings.
Table of Contents
Downloads
Contact
Phone
Online
Fax
Address
Room 230
Boston, MA 02133