Information Assurance of the Defense Civilian Personnel Data System - Navy

Abstract

The overall audit objective was to evaluate the adequacy of information assurance for the Defense Civilian Personnel Data System as it relates to the Navy. Specifically, we evaluated security planning, risk analysis, and security management. We did not evaluate the security of network and communications infrastructure because DoD resources were not available to conduct vulnerability assessments. We also reviewed the management control program as it applied to the audit objectives. Appendix A discusses the audit process. Appendix B provides a summary of prior coverage related to the audit objectives.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 29, 1998
Accession Number
ADA368214

Entities

Organizations

  • Office of the Inspector General, U.S. Department of Defense

Tags

Communities of Interest

  • Human Systems

DTIC Thesaurus Topics

  • Application Software
  • Area Security
  • Civilian Personnel
  • Computer Network Security
  • Computers
  • Cybersecurity
  • Digital Communications
  • Human Resources
  • Information Systems
  • Local Area Networks
  • Mainframe Computers
  • Personnel Management
  • Risk
  • Risk Analysis
  • Risk Management
  • Security Personnel
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Business Analytics
  • Cybersecurity.
  • Logistics and Supply Chain Management.