A report from BC’s Auditor General says that the province has not established an effective process for monitoring the security of its information.
A software tool called Security HealthCheck that monitors security policies, standards and practices has been introduced across government ministries, but the AG found that its implementation is seriously flawed. Self-assessments by more than half the ministries the auditors looked at were inadequate.
The report recommends that the province’s Chief Information Officer develop more detailed guidance for ministries and establish its own auditing process.