Computer Security: Weaknesses Continue to Place Critical Federal Operations and Assets at Risk

Abstract

I am pleased to be here today to discuss our analysis of information security audits at federal agencies. As with other large organizations, federal agencies rely extensively on computerized systems and electronic data to support their missions. Accordingly, the security of these systems and data is essential to avoiding disruptions in critical operations, data tampering, fraud, and inappropriate disclosure of sensitive information. Today, I will summarize the results of our analysis of information security audits performed by us and by agency inspectors general since July 1999 at 24 major federal departments and agencies. In summarizing these results, I will discuss the types of pervasive weaknesses that we and agency inspectors general have identified. I will then describe the serious risks that these weaknesses pose at selected individual agencies of particular interest to this subcommittee, and the major common weaknesses that agencies need to address. Finally, I will describe the management improvements that are needed to resolve these weaknesses and the significant challenges that remain.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 05, 2001
Accession Number
ADA388474

Entities

Organizations

  • United States Government Accountability Office

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Application Software
  • Commerce
  • Computer Access Control
  • Computer Crime
  • Computer Programming
  • Computer Programs
  • Computer Security Software
  • Computers
  • Cybersecurity
  • Electronic Mail
  • Health Services
  • Information Systems
  • Internet
  • National Security
  • Operating Systems
  • Organizational Structure
  • System Software

Readers

  • Cybersecurity.
  • Defense Financial Management and Audit.

Technology Areas

  • Cyber
  • Microelectronics