ABSTRACT

Sensitive Secret Service Data at Risk of Unauthorized Access and Disclosure   [open pdf - 82KB]

This is a press release from the United States Department of Homeland Security Office of Inspector General titled "Sensitive Secret Service Data at Risk of Unauthorized Access and Disclosure". From document itself: "Today, the Department of Homeland Security Office of Inspector General (OIG) released a new report containing troubling findings regarding IT management at the Secret Service. The audit report, USSS Faces Challenges Protecting Sensitive Case Management Systems and Data (OIG-17-01), is a follow-up to the OIG's prior independent investigation into Secret Service employees' improper access and disclosure of information about Congressman Jason Chaffetz contained in a Secret Service database. [...] The resulting audit uncovers a myriad of problems with Secret Service's IT management including inadequate system security plans, systems with expired authorities to operate, inadequate access and audit controls, noncompliance with logical access requirements, inadequate privacy protections, and overretention of records. The OIG concluded that Secret Service's IT management was ineffective because Secret Service has historically not given it priority. The Secret Service CIO's [Chief Information Officer] Office lacked authority, inadequate attention was given to updating IT policies, and Secret Service personnel were not given adequate training regarding IT security and privacy. The Office of Inspector General made 11 recommendations and Secret Service agreed to take the recommended corrective actions."

Publisher:
Date:
2016-10-14
Copyright:
Public Domain
Retrieved From:
United States Department of Homeland Security Office of Inspector General: https://www.oig.dhs.gov/
Format:
pdf
Media Type:
application/pdf
URL:
Help with citations