U.S. Department of Energy Audit Report: Cyber-Related Critical Infrastructure Identification and Protection Measures [open pdf - 348KB]
"In recent years, critical infrastructure protection has taken on increasing national importance as attacks and resulting damage to the country's critical cyber interests have increased. In 1998, in response to these threats, the Administration issued a directive to demonstrate the Federal government's commitment to protecting critical assets. More recently, President Bush signaled his support for critical infrastructure protection efforts by issuing Executive Order 13231, Critical Infrastructure Protection in the Information Age. The President's order seeks to strengthen the protection of critical information systems, including emergency preparedness communications, and the physical assets that support those systems. The Office of Inspector General has undertaken a series of reviews designed to evaluate the security and performance of the Department's information technology programs. Based on this work, we concluded in our Special Report on Management Challenges at the Department of Energy, (DOE/IG-0538, December 2001) that security of cyber assets is one of the most significant challenges facing the Department. The objective of this audit was to determine whether the Department had identified and developed protection measures for its critical cyber and related physical infrastructure assets."
Department of Energy, Office of Inspector General, Report No. DOE/IG-0545
Department of Energy, Office of Inspector General: http://energy.gov/ig/