Auditors say a lack of accountability by some Kansas agencies that handle sensitive information could make citizens’ personal information vulnerable.
An audit released this week says some agencies aren't complying with requirements to provide detailed information technology plans because they see them as time consuming and of little value. Auditors say they found little state oversight of the required reports.
The audit found that 17 of the 45 agencies that hold data considered “high risk” had not had an independent evaluation of their security in the last three years.
Some lawmakers on the Legislative Post Audit Committee have asked the state's information technology agency to provide an estimate of how much it would cost to implement recommendations made by the auditors.