Brunswick Central School District - Online Banking (2020M-6) | Office of the New York State Comptroller

Issued Date

May 01, 2020

[read complete report - pdf]

Audit Objective

Determine whether the Board and District officials ensured online banking transactions were appropriate and secure.

Key Findings

The Board did not adopt an online banking policy.
Employees accessed nonbusiness websites although it is prohibited by District policy.
District officials did not provide IT security awareness training to IT users.

Sensitive information technology (IT) control weaknesses were communicated confidentially to officials.

Key Recommendations

Adopt a comprehensive online banking policy.
Monitor computer use to ensure compliance with District policies.
Provide IT security training to all IT users.

District officials generally agreed with our recommendations and have initiated or indicated they planned to initiate corrective action.

Background

The Brunswick Central School District (District) serves the Towns of Brunswick, Pittstown, Grafton, Poestenkill and Schaghitcoke in Rennselaer County.

The District is governed by a nine-member Board of Education (Board). The School Superintendent (Superintendent) is the District’s chief executive officer. She is responsible, along with other administrative staff, for the District’s day-to-day management.

The District’s Assistant Superintendent of Business, Treasurer and Deputy Treasurer were responsible for overseeing and performing online banking activity.

Quick Facts
Online Banking Computers	3
Online Banking Transactions During our Audit Period	307
Bank Account Balance with Online Access, as of September 30, 2019	$4,430,554

Audit Period

July 1, 2017 – September 30, 2019