Audit: TSA has weak IT security controls

Audit: TSA has weak IT security controls
Audit: TSA has weak IT security controls

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

Content-Transfer-Encoding: QUOTED-PRINTABLE

By Alice Lipowicz
May 26, 2009

The Transportation Security Administration had 15 information technology 
control deficiencies in fiscal 2008 that collectively represent a 
material weakness that could affect the integrity of the agency=E2=80=99s 
financial data, according to a recent audit released by the Homeland 
Security Department=E2=80=99s Office of Inspector General.

Auditors from KPMG made 15 findings of deficiencies at TSA, including 13 
repeat findings and two new findings.

TSA officials took corrective action in fiscal 2008 by testing disaster 
recovery procedures and reviewing audit logs, but the agency still fell 
short on oversight of the termination of a software support contract, 
configuration management and tracking of scripts.

=E2=80=9CCollectively, the IT control weaknesses limited TSA=E2=80=99s ability to ensure 
that critical financial and operational data were maintained in such a 
manner to ensure confidentiality, integrity and availability,=E2=80=9D the 
report states. =E2=80=9CIn addition, these weaknesses negatively impacted the 
internal controls over TSA financial reporting and its operation, and we 
consider them to collectively represent a material weakness for TSA 
under standards established by the American Institute of Certified 
Public Accountants.=E2=80=9D


Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline



Site design & layout copyright © 1986-2014 CodeGods