Back to list
06 November 2018

Public institutions lack strategies, policies and procedures for information technology systems


Due to lack of them is risked achievement of objectives by budget organizations, and may be risked the security of official information.

In order to evaluate information systems at the local and national level, the National Audit Office has undertaken an analysis of research character to assess whether budget organizations have developed internal policies and procedures of Information Technology (IT), have sufficient human resources and whether the information systems are secure.

This analysis shows that budget organizations at the central level, as well as local ones have significant shortcomings in governance of information technology. Around 70% of budget organizations lack strategy, policies and procedures for development and maintenance of information technology systems, have inadequate organizational structure of Information Technology Department, while it has been estimated that only 27% of them use central information systems.

Numerous shortcomings have also been noticed in safety of applications and data that they contain. These systems have poor controls, lack professional capacities, as well as lack of training.

Inadequate use and management of IT services at the same time poses risks and vulnerabilities to the data being processed. Management of budget organizations should provide support to ensure that Information and Communications Technology systems are reliable, safe and untouchable from computer attacks, and to ensure that IT systems preserve confidentiality, integrity and availability of data.

Furthermore, this analysis can serve the Government or the Ministry of Public Administration, Ministry of Economic Development and the Ministry of Finance and other stakeholders, as independent information related to the existing condition of IT systems in the country.

The full report can be read at