Department of Interior not Cyber Secure

The Inspector General at the Department of Interior has failed the agency in an audit assessing cyber security. The audit claims that the current efforts by the DOI are well short of established minimums in for federal agencies.

The report highlighted a number of issues at the agency, including less than qualified cyber professionals (a problem that seems endemic to a number of federal agencies), lack of involvement by leadership and too much decentralization of IT. The cyber security effort at DOI is considered by the IG to be inefficient and wasteful, while lacking appropriate levels of accountability. CIOs for each division are supposed to be responsible for cyber security within their departments. However, they often delegate that responsibility to smaller offices, which costs more and is inefficient. Problems documented in a cyber security management system are often not adequately followed up on or fixed.

Related posts:

1. Private Study Finds Lack Of Cybersecurity Experts In The US: Cyber Jobs Must Be More Lucrative
2. Singapore Gets Cyber Agency
3. Study Finds Persistent Threats to Goverment IT Systems
4. ‘Cyber Arms Race’ Nets Close to 100
5. NIST Publishes Updated Report on Government Cybersecurity