Government failing at information, computer security.A Government Accountability Office The Government Accountability Office (GAO) is the audit, evaluation, and investigative arm of the United States Congress, and thus an agency in the Legislative Branch of the United States Government. (GAO) audit of 24 of the largest U.S. agencies found that only seven are in compliance with a law requiring them to certify and accredit To give official authorization or status. To recognize as having sufficient academic standards to qualify graduates for higher education or for professional practice. In International Law: their information systems' security. Among the 24 agencies reviewed by GAO auditors, six reported that fewer than half of their information systems were accredited accredited recognition by an appropriate authority that the performance of a particular institution has satisfied a prestated set of criteria. accredited herds cattle herds which have achieved a low level of reactors to, e.g. and certified. Two agencies, the Agriculture and Housing and Urban Development departments The Department of Housing and Urban Development (HUD) is the principal federal agency responsible for programs concerned with housing needs, fair housing opportunities, and improving and developing U.S. communities. , have no accredited and certified systems. The Social Security Administration and the Nuclear Regulatory Commission Nuclear Regulatory Commission (NRC), an independent U.S. government commission, created by the Energy Reorganization Act of 1974 and charged with licensing and regulating civilian use of nuclear energy to protect the public and the environment. , however, reported that 100 percent of their critical information systems are certified and accredited to operate. Officials at 18 of the agencies surveyed said they struggled to find funds to enact the mandatory certifications. The review looked at agencies' certification and accreditation procedures to determine whether they provided consistent and comparable results. It also considered whether the certification procedures provide sufficient information for senior agency officials to understand the risks of operating those systems. The GAO reviewed yearend data reported to Office of Management and Budget The Office of Management and Budget (OMB), formerly the Bureau of the Budget, is an agency of the federal government that evaluates, formulates, and coordinates management procedures and program objectives within and among departments and agencies of the Executive Branch. (OMB OMB abbr. Office of Management and Budget Noun 1. OMB - the executive agency that advises the President on the federal budget Office of Management and Budget ) officials in fiscal years 2002 and 2003, in addition to quarterly data submitted to the agency in March. GAO's analysis found inconsistencies in the way agencies report certification and accreditation data, which lessened the data's usefulness. Auditors further questioned the reliability and quality of the data. The audit report recommends that OMB officials amend their reporting guidelines to require agencies to submit additional information on the quality and consistency of their certification and accreditation data. The U.S. government's computer security also needs improvement An internal report by the Department of Homeland Security's (DHS DHS Department of Homeland Security (USA) DHS Department of Human Services DHS Department of Health Services DHS Demographic and Health Surveys DHS Dirhams (Morocco national currency) inspector general found that the DHS' efforts to battle computer network and Internet attacks by cyber criminals and hackers suffer from a lack of coordination. poor communication, and a failure to set priorities. The report said the National Cyber Security Division's shortcomings A shortcoming is a character flaw. Shortcomings may also be:
According to a former cyber security chief, computer security issues within the agency are not given enough attention. Amit Yoran submitted his resignation in October after only one year as the government's cyber security director and expressed his frustration with this issue. Under Yoran, Homeland Security established an ambitious new cyber-alert system that sends e-mails to subscribers about major virus outbreaks and other Internet attacks as they occur, along with detailed instructions to help users protect themselves. The DHS also began mapping the government's universe of connected electronic devices, the first step toward systematically scanning them for weaknesses that could be exploited by hackers or foreign governments. Yoran was the third cyber security chief in the past two years. |
|
||||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion