Quick-Reaction Report on Physical and System Security at the East Service Center of the Defense Commissary Agency

Abstract

During our audit of 'Information Resources Management in the Defense Commissary Agency' (Project No. 2AL-0035), we noted that the East Service Center of the Defense Commissary Agency (DeCA) has not established procedures to satisfy the minimum security requirements prescribed by DoD Directive 5200.28, 'Security Requirements for Automated Information Systems (AISs),' March 21, 1983, and the safeguards for unclassified information recommended in Office of Management and Budget Circular Number A-130, 'Management of Federal Information Resources,' December 12, 1985. Specifically, the East Service Center had not established procedures for accountability of users; password protection; security training and awareness; and physical control of hardware, software, and data. This matter needs your immediate action to ensure that DeCA achieves the requisite level of security to safeguard the AIS against unauthorized access and disclosure, modification, or destruction of data.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Nov 30, 1992
Accession Number
ADA270239

Entities

Organizations

  • Office of the Inspector General, U.S. Department of Defense

Tags

Communities of Interest

  • Cyber
  • Human Systems

DTIC Thesaurus Topics

  • Accountability
  • Area Security
  • Business Administration
  • Computers
  • Congress
  • Cybersecurity
  • Data Processing
  • Databases
  • Department Of Defense
  • Directives
  • Information Security
  • Information Systems
  • National Security
  • Operating Systems
  • Security
  • Security Personnel
  • Standards

Readers

  • Cybersecurity.
  • Defense Financial Management and Audit.