City University of New York

General Controls at the Data Center and Selected Colleges (Follow-Up Report)

Certain data processing operations at the City University of New York (CUNY) are performed centrally, while other such operations are performed by the individual colleges comprising CUNY. In audit report 2003-S-10, we examined the controls that had been established to protect the security, integrity and ongoing availability of these computer operations and identified a number of actions that needed to be taken to improve the controls. When we followed up on these matters with CUNY officials, we found that the officials had made, and were continuing to make, progress in their efforts to fully implement our audit recommendations. To protect the security of CUNY’s computer operations, our detailed audit findings were not included in either our original audit report or our follow-up report.

For a complete copy of Report 2005-F-1 click here.