Audit shows Kansas agencies still have significant IT flaws, gaps in IT security training

by Rachel Mipro, Kansas Reflector
December 12, 2022

TOPEKA — Kansas auditors found serious flaws in several state agencies’ IT security measures, according to survey results spanning from January 2020 to December of this year.

The audit of 21 state agencies and school districts tested 40-50 IT security and control items. One entity was audited twice and counted as two separate entities. Out of the 21 entities, 10 scored poorly or very poorly in vulnerability tests — below 50% in security and IT standards.

During a legislative post audit committee meeting Monday, Alex Gard, principal IT auditor in the Kansas Legislative Division of Post Audit, said some of the entities surveyed hadn’t fixed problem areas since the last time they were audited.

“State agencies and school districts continue to have similar IT security issues to those we’ve identified in audits we’ve conducted over the past 20 years,” Gard said. “Several entities were audited for the second or third time during the past 10 years or so, and some entities improved from one audit to the next, while others had repeated findings.”

Gard said most of the problems stemmed from either a lack of proper oversight, or a lack of staff resources to address IT security issues. Most of the audited entities had some level of unsupported software, and in some cases, the entities didn’t have any IT security training or security plans for keeping data safe.

Gard said some entities also failed phishing tests, or didn’t dispose of sensitive information in a safe manner.

“Overall, we found significant security issues in many systems with respect to account security, data protection, scanning and patching and risk and security assessment,” Gard said.

Rep. John Barker, R-Abilene, said lawmakers needed to actively address gaps in IT security. He said he was worried the state was vulnerable to losing sensitive information.

“I just think the Legislature at some point needs to address this issue so we can see some improvement,” Barker said. “Wait till we get hacked.”

Barker said he wasn’t sure if the state’s IT problems came from leadership issues, or a lack of experienced personnel, but thought more needed to be done.

“Overall, the state, it doesn’t seem like we’re making any progress,” Barker said.

For future IT security audits, starting in 2023, lawmakers decided to choose a broader audit plan that would focus on more entities, testing a few set IT areas instead of an intensive evaluation of fewer entities.

“It does cast a broader net, and then it does help us identify more potential problems,” said Sen. Mike Thompson, R-Shawnee.

During the meeting, lawmakers also approved auditing K-12 school districts to evaluate the estimated costs of providing educational opportunities for every public school student to meet performance outcome standards set by the Kansas State Board of Education.

The audit also would evaluate the relationship between costs for these educational opportunities and the outcome of the expenditures.

Kansas Reflector is part of States Newsroom, a network of news bureaus supported by grants and a coalition of donors as a 501c(3) public charity. Kansas Reflector maintains editorial independence. Contact Editor Sherman Smith for questions: info@kansasreflector.com. Follow Kansas Reflector on Facebook and Twitter.

Hot this week

🎙️ Sports Bite: Todd Clover Waconda Lakers 7-1-2026

Sports Bite: Here is the long form of todays...

Marysville Native Mike Hammett Earns LSWA Play-By-Play Award As Voice of the University of Louisiana Monroe Warhawks

Mike Hammett, the "Voice of the Warhawks," won the College Sports Radio Play-by-Play Award at the Louisiana Sports Writers Association brunch, marking his first victory after three second-place finishes. lauded for his professionalism and accurate commentary, Hammett praised his broadcast team and will start the 2026-27 season on September 5.

🎙️ Lydia & Blake at the Lake: Jennifer Urbaniak Jewell County Community Development

Jennifer Urbaniak with Jewell County Community Development sits down...

Downtown Marysville listed on Kansas Register

The Downtown Marysville Historic District was listed on the Register of Historic Kansas Places on June 27, recognizing its historical and architectural significance. Spanning 167 years, the district features 86 resources, including notable buildings from various eras. The initiative, led by OneMarysville and supported by a grant, aims to preserve community heritage.

Latest Headlines

President Approves Request For Major Presidential Disaster Declaration

President Trump approved a federal disaster declaration for Kansas following severe storms and flooding from April 26-27, which damaged utility infrastructure and roads. This declaration will enable local governments and nonprofit organizations to access Public Assistance funds for repairing or replacing infrastructure in affected counties, including Cherokee, Morris, Osage, Saline, and Wabaunsee.

Marshall County Commission Meeting Minutes – 6/29/2026

The Marshall County Commissioners held a regular meeting to approve June 2026 purchase orders, discuss budget requests for 2027, and consider security measures. The Board addressed staffing changes and various appropriations for services, including emergency management and community programs. The meeting concluded with plans for the next session on July 6, 2026.

Day 11, Kansas Wheat Harvest Report

The Kansas Wheat Harvest Reports highlight consistent weather aiding farmers nearing the end of the 2026 harvest season. Producers report variable yields due to drought and damage, with test weights ranging from 58 to 65 pounds. Concerns about seed supply for next year and declining acres were noted.

Thunder Lock In Future Pieces, Sign Draft Picks Mara And Stirtz Alongside Two-Way Trio

The Oklahoma City Thunder have made significant roster changes, signing first-round draft picks Aday Mara and Bennett Stirtz to multi-year contracts. They also added guards Josh Dix and Otega Oweh, along with returning forward Brooks Barnhizer, on two-way contracts. These moves enhance the team's depth and further their talent development strategies.

Kansas City Current Returns to Regular Season with Emphatic 3-0 Shutout at Denver Summit FC

The Kansas City Current defeated the Denver Summit FC 3-0, marking their first meeting on July 3, 2026. Michelle Cooper scored twice, assisted by Croix Bethune, while Temwa Chawinga added a late goal. Kansas City maintained strong defense and secured the shutout, showcasing a dominant performance throughout the match.
- Advertisement -

Related Articles

Popular Categories

- Advertisement -