With Regard To The Report Of The Audit "automated Information System" Ensures That Social Security "to Protect The Integrity Of Data Assets, And Operating Effectively To Achieve Organizational Goals And Objectives?"

Original Language Title: cu privire la Raportul de audit TI „Asigură Sistemul Informațional Automatizat „Asistență Socială” protejarea activelor, integritatea datelor și funcționează eficient pentru a atinge scopurile și obiectivele organizaționale?”

Read the untranslated law here: http://lex.justice.md/index.php?action=view&view=doc&lang=1&id=362848

with regard to the report of the audit "Automated information system" ensures that social security "to protect the integrity of data assets, and operating effectively to achieve organizational goals and objectives?"



Published: 29.01.2016 in Official Gazette No. 20-24 art Nr 5: Court of Auditors, in the presence of the Deputy Minister of labour, social protection and the family, Mr. b. Gilca, Director of the National Council for determination of Dizabilității and ability to Work, Ms. l. Sochirca, head of Social Inspection, Mr. m. Henry, head of the Directorate of social assistance and family protection sect. Center, mun. Chişinău, Ms. e. Parancenco, head of the Directorate of social assistance and family protection Criuleni, Ms. l. Bainbridge, head of the Directorate of social assistance and family protection Hîncești, Ms. t. Călugăru, head of the Directorate of social assistance and family protection Ialoveni, Mrs. m. Tîrgoală, head of the Directorate of social assistance and family protection Telenești, Ms. a. Sirbu, head of Directorate-General for development and the development of the information system within the National Social Insurance House Mr. i. Cuciaș, Deputy Head of the Directorate General of internal audit within the National Social Insurance House, Ms. e. Țîbîrnă, and others of the authorities concerned, being guided by article 2 para. (1) and article 4 para. (1) (a). a) of the law on the Court of Auditors No. 261-XVI from 05.12.20081, has examined auditor YOUR Automated information system "Ensure" social work "protecting assets, data integrity and operate effectively to achieve organizational goals and objectives?" performed by the Ministry of labour, social protection and family (hereinafter MLSPF), with the audit and collection of evidence from other public authorities involved in the implementation of the automated Information System "Social Assistance".
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 1Legea Court of Auditors No. 261-XVI of 05.12.2008, Official Gazette of the Republic of Moldova, 2008, 237-240, 864.

The Mission of the audit has been carried out in accordance with article 28 and article 31 of law No. 261-XVI of 05.12.2008 and in accordance with the auditing activity of the Court of Auditors for the year with 20152 account, the terms of reference proposed by the World Bank, in order to obtain competent audit evidence, relevant and reasonable to support the findings and conclusions of the audit report as well as submitting constructive recommendations, reliable and helpful in this regard. The audit was planned and conducted according to international standards of Auditing carried out by the Court of Conturi3, the audit Manual of the informaţionale4 technology, approved by the Court of Auditors, as well as good practices in the field of information technology audit.
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 2 Program activity of the Court of Auditors the accounts for the year 2015, approved by the decision of the Court of Auditors No. 57 of 08.12.2014 (with subsequent amendments).
3 ÎSSAI 100 "the fundamental principles of the public sector audit ' ISSAI ', 300 basic principles of performance audit" and "methodology of ISSAI 5310 review of Information Systems Security-Guide on the review of the information systems security in the public authorities", implemented by the decisions of the Court of Auditors No. 60 of 10.12.2013 and no. 7 from 10.03.2014.
4Manualul the information technology audit, approved by the decision of the Court of Auditors No. 69 of o.u. No..


Examining the audit results and the hearing report, and explanations of persons with responsibility functions present in the public tender, the Court of Auditors has noted: the Court of Auditors is concerned with intelligence/accuracy of underlying investments in information technologies (hereinafter referred to as TI) by public authorities, and that these authorities can obtain better performance from the use of public funds and the management of public services.
Automated information system "Social Assistance" (hereinafter SIAAS), purchased at the expense of credits offered by the World Bank, represent an investment in YOUR future, which could contribute significantly to the progress of the project "strengthening the effectiveness of the network of social welfare", as well as the successful implementation of the reform in the field of social assistance, and more. According to the normativ5 framework, MLSPF is the designated owner and holder of SIAAS, is responsible for ensuring management and continuous development of its activities, by establishing the necessary and adequate control.
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 5Hotărîrea No. 1356 from 03.12.2008 "regarding the approval of Automated Information System Structure" social welfare ", with amendments and additions thereto, hereinafter Decision No. 1356 from 03.12.2018.

The basic aim of SIAAS, as provided for in Resolution No. 1356 from 03.12.2008, lies in enhancing the effectiveness of the system of social assistance, both by providing a training tool, as well as by providing information to the ministries, other central administrative authorities and local public administration authorities, as well as to the staff of the social welfare system. Initial version of SIAAS has been released in production in September 2013 and contained 2 core modules: "Social benefits" and "social services". At the same time, taking into account the fact that within the structures of MLSPF there are other subordinate institutions with specific areas of activity, but their impact on social assistance sector, with the support of the World Bank, in addition to the core modules have been developed and integrated into SIAAS 7 modules, including: "Social Inspection", "CNDDCM" 6, "Local Fund" and "Republican Fund", "local Payments", "accreditation", "reporting and monitoring". The extended version of SIAAS was put into operation in September 2015.
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 6Modulul Dizabilității National Council for Determination and capacity for work (hereinafter referred to as "CNDDCM").

Through the audit procedures performed, the audit determined the priority carențele, complications, and that, during the period September to November 2015, have affected the smooth running of the enlarged version of the SIAAS, by giving appropriate recommendations through which they could be removed, ensuring the successful implementation of the system in the near future.
During the period of carrying out the audit, integrated with the new SIAAS functionality is at the early stage of operation. In this context, it is necessary to note that the audit findings are provisional or refer only to what has been achieved until the completion of the mission.
Concluding from the audit findings and conclusions presented in the report, it reveals the presence of obstacles, problems and malfunctions, subject, in principle, be premature to service launch SIAAS. This could affect the success of SIAAS and would require urgent undertaking appropriate measures by the responsible parties involved in order to eliminate them. Thus, the audit concludes that, during the period of carrying out the audit, SIAAS partially fulfils the purpose for which it was created: the realization of a unified system for managing the process of granting and calculation of social security benefits.
In the year 2015, similar to previous years (according to the results of the audits conducted by the Court of Auditors in 2013 and 20147), SIAAS presented the malfunctions that have either not providing useful information to the decision-making process, either at the provision of incomplete information/incorrect. The information system at the moment does not contribute entirely to increase the effectiveness of the work carried out by the audited entities and does not allow obtaining information, operatively, which would facilitate their analysis, monitoring performance and achieving their own goals.
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 7Hotărîrea Court of Auditors No. 65 of 17.12.2013 "on the performance audit Report, are effectively run welfare funds and programmes directed towards disadvantaged strata of the population?" "; The decision of the Court of Auditors No. 22 of 06.05.2014 "on the Project's operational audit Report" health care and social assistance "for the period 2011-2013"; The decision of the Court of Auditors No. 6 of 27.02.2015 "on the performance audit Report" management management of social aid programs as one functional, requires continuous improvements ".

At the same time, it should be noted that MLSPF does not have sufficient resources, including human, which would ensure the sound administration and sustainability of SIAAS, which is currently dependent on World Bank consultants, limited-term contracts. In the same vein, the activities of entities involved in the use of this system is limited and the lack of computers (computers, printers, etc.), which could affect the proper implementation of the SIAAS and the fulfilment of the objectives set.

In the context of those exposed, in order to achieve a broad spectrum of activities established, MLSPF requires support from the Government, as well as a constructive and transparent cooperation with the entities involved in the use of SIAAS. In the absence of those listed, it will be difficult to achieve the major objectives set out in the policy documents approved.
Based on the above, pursuant to article 7 para. (1) (a)), article 15(1) thereof. (2) and paragraphs 1 and 2. (4) article 16 c) and art. 34, para. (3) of the law on the Court of Auditors No. 261-XVI of 05.12.2008, Court of Auditors decides: 1. to approve the Audit Report DID "Automated information system" ensures that social security "to protect the integrity of data assets, and operating effectively to achieve organizational goals and objectives?" (to be attached).
2. this Resolution and the report of the audit shall be submitted to: 2.1.    The Ministry of labour, social protection and family, for information purposes, and is required to: 2.1.1. to examine the results of the audit in the presence of subordinated institutions, as well as social assistance Directorates and protection of the family, the users of the SIAAS, in order to inform them about the audit results and intensified the efforts needed to ensure the functioning of the system;
2.1.2. to take the necessary measures in order to eliminate the shortcomings noted by the audit, through the implementation of the recommendations set out in the audit report;
2.1.3. to revise annex 1 to the regulation on the method of calculating and paying aid Social Committee(8), include rules for the consimțămîntul of the subject (applicant for social benefits) for the processing of personal data, with the submission of motions to amend in the established manner;
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ 8Hotărîrea No. 1167 from 16.10.2008.

2.1.4. together with the subordinated institutions whose processes were automated and integrated into SIAAS, to initiate a complete review of the regulatory framework relevant to their activity, with account of the use of SIAAS in this regard, with appropriate proposals in due order;
2.1.5. to assess user needs SIAAS, including computers, in order to ensure efficient implementation of the system of related activities, with the appropriate action;
2.2. The Agency for land Relations and Cadastre, for information, and jointly with the Ministry of labour, social protection and family to examine and to submit, in due order, appropriate proposals to ensure the interconnection SIAAS system with automatic information Access in the real estate registry ";
2.3. National House for social insurance, State Enterprise "SIRC" Registru "National Company of medical insurance, for information and implementation, jointly with the Ministry of labour, social protection and family, the recommendations in the audit report;
2.4. The inspection of the National Council for the social determination of Dizabilității and ability to work, Republican Fund for support of population and welfare Directorates and protection of the family: sect. Center, mun. Chişinău; Mun. Bălţi; Criuleni; SSR; Ialoveni and Telenești, for documentation and undertaking the necessary measures in order to ensure the functioning of the SIAAS;
2.5. The World Bank Office, for information;
2.6. The Moldovan Government, for information;
2.7. The Parliament of Moldova, for documentation and possible use in making decisions related to information and communication technologies domain.
3. About the execution of the requirements of subparagraphs 2.1-2.3. in this Decision, including the implementation of the recommendations of the audit, the Court of Auditors will be informed within 12 months from the date of its publication in the Official Gazette of the Republic of Moldova, with the half-yearly reporting on the measures taken in this regard. This Decision shall be published in the Official Gazette of the Republic of Moldova in accordance with article 34 para. (7) of the law on the Court of Auditors.