Article 45 – Information Security
49020.13 Failure to Correct Information Security Deficiencies
-
Should any audit indicate that the State’s security policies are not established or that the Department has not taken corrective action with respect to security deficiencies, the Department may be subject to any or all of the following:
-
Further audit and review by the Department of Finance (DOFDepartment Of Finance), Bureau of State Audits (BSA), State Controller’s Office (SCOState Controller’s Office), and/or Department of Justice (DOJDepartment Of Justice).
-
Revocation by the DOFDepartment Of Finance of delegated approval authority for ITInformation Technology projects.
-
Application of penalties specified in GCGovernment Code § 1222.
-