Data Migration Strategy and Information Assurance for the Business Enterprise Information Services
Abstract
We audited the Business Enterprise Information Services (BEIS) system to determine whether it had a comprehensive data migration plan, met information assurance (Federal Information Security Management Act) standards, and met the standards for the Federal Financial Management Improvement Act of 1996 (FFMIA). We determined that the Business Transformation Agency (BTA) internal controls were not adequate. We identified internal control weaknesses in the BTA data migration strategy, information assurance, and FFMIA compliance. Specifically, BTA did not: have an effective data migration strategy for Components to follow for converting legacy systems to the Business Enterprise Architecture (BEA); determine the sequence or schedule for when the functionality of 13 legacy systems would be transferred to BEIS; separate the certification and accreditation processes, thereby creating a potential conflict of interest; have a security plan that met Office of Management and Budget (OMB) and DoD requirements; and test BEIS for compliance with FFMIA. Implementing the recommendations would improve internal controls and BEIS efforts on data migration, information security, and FFMIA compliance.
Document Details
- Document Type
- Technical Report
- Publication Date
- Jul 30, 2009
- Accession Number
- ADA503755
Entities
Organizations
- Office of the Inspector General, U.S. Department of Defense