Confidential communication (31 - 40 of 50 items)
VA Information Systems: The Austin Automation Center Has Made Progress in Improving Information System Controls
AIMD-99-161: Published: Jun 8, 1999. Publicly Released: Jun 8, 1999.
Pursuant to a legislative requirement, GAO assessed the effectiveness of information system general controls at the Department of Veterans Affairs' (VA) Austin Automation Center (AAC).GAO noted that: (1) AAC had made substantial progress in correcting specific computer security weaknesses that GAO identified in its previous evaluation of information system controls; (2) AAC had established a solid...
Information Security: Many NASA Missions-Critical Systems Face Serious Risks
AIMD-99-47: Published: May 20, 1999. Publicly Released: May 20, 1999.
Pursuant to a congressional request, GAO provided information on the National Aeronautics and Space Administration's (NASA) information security program, focusing on: (1) whether NASA's mission-critical information systems are vulnerable to unauthorized access; (2) whether NASA is effectively managing information systems security; and (3) what NASA is doing to address the risk of unauthorized acce...
Information Security: The Melissa Computer Virus Demonstrates Urgent Need for Stronger Protection Over Systems and Sensitive Data
T-AIMD-99-146: Published: Apr 15, 1999. Publicly Released: Apr 15, 1999.
Pursuant to a congressional request, GAO discussed: (1) the immediate effects of the Melissa virus and variations of it as well as its broader implications for the federal government; and (2) critical measures that should be taken to ensure that federal departments and agencies are better prepared for future viruses and other forms of attack.GAO noted that: (1) Melissa is a macro virus that can af...
Information Security: Serious Weaknesses Place Critical Federal Operations and Assets at Risk
AIMD-98-92: Published: Sep 23, 1998. Publicly Released: Sep 23, 1998.
Pursuant to a congressional request, GAO reviewed: (1) the effectiveness of federal information security practices based on recently issued audit reports; (2) efforts to centrally oversee and manage federal information security; and (3) actions taken by the Office of Management and Budget (OMB) and the federal Chief Information Officers (CIO) Council to address federal information security problem...
Information Security: Strengthened Management Needed to Protect Critical Federal Operations and Assets
T-AIMD-98-312: Published: Sep 23, 1998. Publicly Released: Sep 23, 1998.
GAO discussed the state of information security in the federal government, focusing on the Department of Veterans Affairs' (VA) and the Social Security Administration's (SSA) efforts to develop and maintain an effective security management program.GAO noted that: (1) as the importance of computer security has increased, so have the rigor and frequency of federal audits in this area; (2) during the...
Computer Security: Pervasive, Serious Weaknesses Jeopardize State Department Operations
AIMD-98-145: Published: May 18, 1998. Publicly Released: May 19, 1998.
Pursuant to a congressional request, GAO reviewed: (1) how susceptible the Department of State's unclassified automated information systems are to unauthorized access; (2) what State is doing to address information security issues; and (3) what additional actions may be needed to address the computer security problem.GAO noted that: (1) State's information systems and the information contained wit...
Information Security: Serious Weaknesses Put State Department and FAA Operations at Risk
T-AIMD-98-170: Published: May 19, 1998. Publicly Released: May 19, 1998.
Pursuant to a congressional request, GAO discussed its work on computer security, focusing on the results of its recent reviews of the Department of State and the Federal Aviation Administration (FAA).GAO noted that: (1) the dramatic increase in computer interconnectivity and the popularity of the Internet are offering government agencies unprecedented opportunities to improve operations by reduci...
Executive Guide: Information Security Management--Learning From Leading Organizations (Supersedes AIMD-98-21)
AIMD-98-68: Published: May 1, 1998. Publicly Released: May 1, 1998.
This publication supersedes AIMD-98-21, Executive Guide: Information Security Management--Learning From Leading Organizations, May 1998. GAO published a guide to assist federal agencies in establishing a management framework for exploring and reducing the information security risks associated with their operations...
Executive Guide: Information Security Management: Learning From Leading Organizations (Exposure Draft) (Superseded by AIMD-98-68)(Superseded by AIMD-00-21.2.8)
AIMD-98-21: Published: Nov 1, 1997. Publicly Released: Nov 1, 1997.
This publication has been superseded by AIMD-00-21.2.8, Travel System Requirements: Checklist for Reviewing Systems Under the Federal Financial Management Improvement Act of 1996, December 1999. This publication has been superseded by AIMD-98-68, Executive Guide: Information Security Management--Learning From Leading Organizations, March 1998. GAO published a guide to assist federal agencies in es...
IRS Systems Security: Tax Processing Operations and Data Still at Risk Due to Serious Weaknesses
T-AIMD-97-76: Published: Apr 10, 1997. Publicly Released: Apr 10, 1997.
GAO discussed the Internal Revenue Service's (IRS) computer security weaknesses. GAO stated that neither this testimony or the report just released quantifies the total number of weaknesses that GAO found or the number of weaknesses found in each of the eight functional categories of security that GAO reviewed, or details the most serious weaknesses that GAO found.GAO noted that: (1) GAO's on-site...