Text Resize

-A +A
Bookmark and Share

Report on the Facilitation of the Information Security/Internal Controls Process at DCLB


Tuesday, January 8, 2013

Office of the Chief Financial Officer
Executive Summary for Closed Reports

 

Original Report

Report No. IA:DCLB:2804-C11: Final Report on the Facilitation of the Information Security/Internal Controls "Self Assessment" Process at the DCLB, dated October 23, 2009.

Current Status

Closed.

Chief Risk Officer’s Risk Assessment

The Inherent Risk associated with the security of the games and supporting technology for the District of Columbia Lottery Board (DCLB) is classified as High risk.  Therefore, particular emphasis is placed on OIO’s recommendations.

Recommendations Overview

OIO provided three recommendations, and all three were implemented in an effort to strengthen internal controls.

  • Minutes were recorded and approved by the group for the 2009 DCLB IT “Self Assessment” process. Standard Operating Procedures (SOPs) detailing the process for IT Self Assessment were established.
  • The report was produced shortly after the sessions on July 1, 2009.
  • The 2009 Risk Analysis “Self Assessment” report corresponds with the updated IT Security Ranked Risks and the IT Security Plan.

To view the full report, click Facilitation of the Information Security/Internal Controls Process at DCLB.