Menu
DHBs urged to focus on ICT security and disaster recovery

DHBs urged to focus on ICT security and disaster recovery

DHBs retain responsibility even when security or disaster recovery is delivered by a service provider

Auditor-general John Ryan

Auditor-general John Ryan

The Auditor-General is urging District Health Boards to be vigilant about data security and disaster recovery after finding weaknesses in some of its audits.

In a report on matters arising from audits spanning 2017 and 2018, Auditor-General John Ryan said it was essential that information systems and technology supporting financial management are secure and well managed. 

"Continual reviews and vigilance are needed because of the large amount of DHB spending and because the environment changes quickly," Ryan's report said.

"In 2017/18, we continued to find that many DHBs needed to improve security by strengthening passwords and ensuring that privileged and administrator access is restricted to those who need it. 

Ensuring that non-active accounts are deleted is another important step that should be more widely applied."

Several DHBs also needed to prepare or update disaster recovery plans for their information systems. 

"Given the extent to which DHBs rely on these systems, an up-to-date disaster recovery plan is essential," the Auditor-General said.

That responsibility did not end when responsibility was shared with service providers.

"It is just as important for these DHBs to be satisfied that information and processes are secure, because responsibility remains with the DHB."

The report said DHBs should question themselves about the level of confidence they have that information systems will be able to support the delivery of services in a reasonable time frame after a disaster.

They also need to ask how secure their systems are, and how to ensure that information security is maintained at an appropriate level.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags disaster recoveryAccesshealthpasswordsdhbssecurity

Featured

Slideshows

EDGE 2019: Thought leaders share how to build a channel of the future

EDGE 2019: Thought leaders share how to build a channel of the future

Day 2 of EDGE was opened by in-depth research from TRA's Tim Dillon, which outlined the partner view on the channel's future. The following day saw Forrester's Jay McBain and Odgers Berndtson's Tim Sleep conclude the keynote line-up, while HPE and Cisco rounded off the thought leadership.

EDGE 2019: Thought leaders share how to build a channel of the future
Tech credentials on show during Ingram Micro One APAC

Tech credentials on show during Ingram Micro One APAC

Ingram Micro outlined the key technologies for future channel growth on the second day of Ingram Micro One APAC in Singapore, in front of more than 1300 business leaders.

Tech credentials on show during Ingram Micro One APAC
EDGE 2019: Dinner Under the Stars

EDGE 2019: Dinner Under the Stars

After an intensive day of keynotes, breakout sessions and networking, 300 delegates donned their whitest gladrags and unwinded at Edge's customary Dinner Under the Stars at Outrigger Marquee. Photos by: Christine Wong.

EDGE 2019: Dinner Under the Stars
Show Comments