Information resources management (111 - 120 of 120 items)
Executive Guide: Information Security Management--Learning From Leading Organizations (Supersedes AIMD-98-21)
AIMD-98-68: Published: May 1, 1998. Publicly Released: May 1, 1998.
This publication supersedes AIMD-98-21, Executive Guide: Information Security Management--Learning From Leading Organizations, May 1998. GAO published a guide to assist federal agencies in establishing a management framework for exploring and reducing the information security risks associated with their operations...
Executive Guide: Information Security Management: Learning From Leading Organizations (Exposure Draft) (Superseded by AIMD-98-68)(Superseded by AIMD-00-21.2.8)
AIMD-98-21: Published: Nov 1, 1997. Publicly Released: Nov 1, 1997.
This publication has been superseded by AIMD-00-21.2.8, Travel System Requirements: Checklist for Reviewing Systems Under the Federal Financial Management Improvement Act of 1996, December 1999. This publication has been superseded by AIMD-98-68, Executive Guide: Information Security Management--Learning From Leading Organizations, March 1998. GAO published a guide to assist federal agencies in es...
IRS Systems Security and Funding: Additional Information on Employee Browsing and Tax Systems Modernization
AIMD/GGD-97-140R: Published: Jun 23, 1997. Publicly Released: Jun 23, 1997.
Pursuant to a congressional request, GAO provided additional information on employee browsing and tax systems modernization.GAO responded to additional questions received from the Senate Subcommittee on Treasury and General Government on employees' electronic browsing of taxpayer files and Internal Revenue's fiscal years 1998 and 1999 budget requests for tax systems modernization...
IRS Systems Security and Funding: Employee Browsing Not Being Addressed Effectively and Budget Requests for New Systems Development Not Justified
T-AIMD-97-82: Published: Apr 15, 1997. Publicly Released: Apr 15, 1997.
GAO discussed: (1) Internal Revenue Service (IRS) employees' electronic browsing of taxpayer files; and (2) IRS' fiscal years (FYs) 1998 and 1999 budget requests for tax systems modernization (TSM) development.GAO noted that: (1) on April 8, 1997, GAO issued a report disclosing many serious computer security weaknesses at IRS; (2) these weaknesses make IRS computer resources and taxpayer data unne...
Information Security: Computer Attacks at Department of Defense Pose Increasing Risks
T-AIMD-96-92: Published: May 22, 1996. Publicly Released: May 22, 1996.
GAO discussed information security procedures at the Department of Defense (DOD). GAO noted that: (1) as many as 250,000 DOD computer systems were attacked in 1995; (2) hackers successfully penetrate DOD computer systems 65 percent of the time; (3) hackers attack DOD computer systems to steal and destroy sensitive data and install reentry devices; (4) these attacks cost the government over half a...
GSA's Computer Security Guidance
AIMD-93-7R: Published: Jul 19, 1993. Publicly Released: Aug 17, 1993.
Pursuant to a congressional request, GAO reviewed Federal Information Resources Management Regulation (FIRMR) Bulletin C-22, which provides guidance to federal agencies on the security and privacy protection of federal computer resources. GAO noted that the guidance: (1) is intended for general use by federal agencies; (2) does not address the various types of sensitive information disclosure; and...
Computer Security: DEA Is Not Adequately Protecting Sensitive Drug Enforcement Data
IMTEC-92-83: Published: Sep 22, 1992. Publicly Released: Sep 30, 1992.
Pursuant to a congressional request, GAO assessed the adequacy of the Drug Enforcement Administration's (DEA) computer security, focusing on: (1) DEA compliance with laws and requirements for protecting sensitive computer information; and (2) Department of Justice (DOJ) oversight of DEA compliance with computer security requirements.GAO found that: (1) DEA has not identified all of its computer sy...
Computer Security: DEA Is Not Adequately Protecting National Security Information
IMTEC-92-31: Published: Feb 19, 1992. Publicly Released: Feb 25, 1992.
Pursuant to a congressional request, GAO reviewed: (1) the Drug Enforcement Administration's (DEA) computer security; and (2) weaknesses involving national security information.GAO found that DEA: (1) has not identified all computer systems that process classified data as required by Department of Justice policy; (2) personnel are improperly using an unapproved and unprotected computer network to...
Serious Questions Remain About Justice's Management of ADP and Computer Security
T-IMTEC-91-17: Published: Jun 27, 1991. Publicly Released: Jun 27, 1991.
GAO discussed the Department of Justice's (DOJ) management of its automatic data processing (ADP) resources and its computer security. GAO noted that: (1) the actions DOJ took to address ADP management shortcomings have mainly been organizational and structural and may be insufficient to solve the pervasive problems in DOJ information resources management (IRM); (2) DOJ lacks a system that can acc...
Computer Security in the Federal Government
122730: Oct 26, 1983
Testimony was given concerning: (1) the nature of the information security problem as it affects Federal automated systems and their supporting telecommunications networks; (2) the key factors of legislation, policy, management, and auditing which affect information security; (3) GAO audit findings which indicated shortfalls that have contributed to security problems; and (4) recent Federal initia...