[ISN] Auditors: Coast Guard, FEMA weak on controls
InfoSec News
alerts at infosecnews.org
Wed Apr 29 01:43:37 CDT 2009
http://fcw.com/articles/2009/04/28/coast-guard-and-fema-weak-on-it-controls-say-auditors.aspx
By Alice Lipowicz
FCW.com
April 28, 2009
The Coast Guard made more progress than the Federal Emergency Management
Agency in securing information technology systems in fiscal 2008,
according to two new audits [1] released by Homeland Security Department
Inspector General Richard Skinner.
The DHS agencies have material weakness in IT controls overall, although
they are experiencing fewer deficiencies than in the previous year,
according to audits conducted by KPMG and released by Skinner April 27.
Auditors found 22 weaknesses in IT controls at the Coast Guard in fiscal
2008 — 21 repeat findings and one new finding. However, the service has
made progress since fiscal 2007, when auditors found 42 IT-related
control deficiencies, of which 40 were repeat problems.
In the new audit, the company found problems with application software
development and change controls, access controls, service continuity and
entitywide security planning and management.
[1] http://www.dhs.gov/xoig/rpts/mgmt/editorial_0334.shtm
[...]
More information about the ISN
mailing list