AOH :: IS1227.HTM

DHS components lagging on information security, IG says




DHS components lagging on information security, IG says
DHS components lagging on information security, IG says



  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

--1457021584-412462917-1223534648=:7213
Content-Type: TEXT/PLAIN; CHARSET=UTF-8
Content-Transfer-Encoding: QUOTED-PRINTABLE
Content-ID:  

http://www.fcw.com/online/news/154026-1.html 

By Alice Lipowicz
FCW.com
October 8, 2008

The Homeland Security Department has taken steps to enhance information 
security, but its component agencies are lagging behind, according to a 
new report [1] from DHS Inspector General Richard Skinner.

For example, 22 of 25 information technology systems audited at DHS 
component agencies were lacking detailed emergency configuration plans, 
management plans, security controls or incident handling procedures, the 
report states. In addition, 19 of the systems had incomplete contingency 
plans, and five systems did not follow guidelines for a federal 
standard.

While the department has implemented a performance plan and made other 
improvements, =E2=80=9Ccomponents are still not executing all of the 
department=E2=80=99s policies, procedures, and practices,=E2=80=9D the inspector general 
concluded.

=E2=80=9CManagement oversight of the components=E2=80=99 implementation of the 
department=E2=80=99s policies and procedures needs improvement in order for the 
department to ensure that all information security weaknesses are 
tracked and remediated, and enhance the quality of system certification 
and accreditation,=E2=80=9D Skinner wrote.

[1] http://www.dhs.gov/xoig/assets/mgmtrpts/OIG_08-94_Sep08.pdf 

[...]


--1457021584-412462917-1223534648=:7213
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

__________________________________________________      
Register now for HITBSecConf2008 - Malaysia! With 
a new triple-track conference featuring 4 keynote 
speakers and over 35 international experts, this 
is the largest network security event in Asia and 
the Middle East! 
http://conference.hackinthebox.org/hitbsecconf2008kl/ 
--1457021584-412462917-1223534648=:7213--

Site design & layout copyright © 1986-2014 CodeGods