Examination of cyber security - City of Prospect

We examined the arrangements established by the City of Prospect to manage cyber security.

For the period that we examined we concluded that important internal control elements to mitigate cyber security and technology risks within the City of Prospect were not operating effectively. We do acknowledge that the City of Prospect has a small IT team and budgetary constraints and that it implemented some controls over its core Enterprise Resource Planning and records management systems.

The City of Prospect responded positively to our recommendations and had already commenced some improvement activities prior to our examination. It continued those improvement activities during and after our examination.