Internal controls (1 - 10 of 28 items)
Healthcare.gov: Actions Needed to Address Weaknesses in Information Security and Privacy Controls
GAO-14-730: Published: Sep 16, 2014. Publicly Released: Sep 16, 2014.
Many systems and entities exchange information to carry out functions that support individuals' ability to use Healthcare.gov to compare, select, and enroll in private health insurance plans participating in the federal marketplaces, as required by the Patient Protection and Affordable Care Act (PPACA). The Centers for Medicare & Medicaid Services (CMS) has overall responsibility for key federal s...
Information Technology: HUD's Expenditure Plan Satisfied Statutory Conditions; Sustained Controls and Modernization Approach Needed
GAO-14-283: Published: Feb 12, 2014. Publicly Released: Feb 12, 2014.
The Department of Housing and Urban Development's (HUD) fiscal year 2013 information technology (IT) expenditure plan satisfied the two sets of statutory conditions contained in the appropriations act. Regarding the first set of conditions, the plan identified for each project the functional and performance capabilities to be delivered, mission benefits, life-cycle costs, and key milestones. For e...
Data Mining: DHS Needs to Improve Executive Oversight of Systems Supporting Counterterrorism
GAO-11-742: Published: Sep 7, 2011. Publicly Released: Oct 7, 2011.
Data mining--a technique for extracting useful information from large volumes of data--is one type of analysis that the Department of Homeland Security (DHS) uses to help detect and prevent terrorist threats. While data-mining systems offer a number of promising benefits, their use also raises privacy concerns. GAO was asked to (1) assess DHS policies for evaluating the effectiveness and privacy p...
Information Technology: HUD Needs to Strengthen Its Capacity to Manage and Modernize Its Environment
GAO-09-675: Published: Jul 31, 2009. Publicly Released: Jul 31, 2009.
Information technology (IT) plays a critical role in the Department of Housing and Urban Development's (HUD) ability to carry out its home ownership and community development mission, which was recently expanded under the Housing and Economic Recovery Act of 2008. Pursuant to a congressional mandate to study HUD's IT environment, GAO reviewed the adequacy of key IT management and modernization con...
DOD Business Systems Modernization: Recent Slowdown in Institutionalizing Key Management Controls Needs to Be Addressed
GAO-09-586: Published: May 18, 2009. Publicly Released: May 18, 2009.
Since 1995, GAO has designated the Department of Defense's (DOD) business systems modernization program as high risk, and it continues to do so today. To assist in addressing DOD's business system modernization challenges, the Ronald W. Reagan National Defense Authorization Act for Fiscal Year 2005 (the Act) contains provisions that require the department to take certain actions and to annually re...
Information Technology: Management Improvements Needed on the Department of Homeland Security's Next Generation Information Sharing System
GAO-09-40: Published: Oct 8, 2008. Publicly Released: Oct 8, 2008.
The Department of Homeland Security (DHS) is responsible for coordinating the federal government's homeland security communications with all levels of government. In support of this mission, DHS implemented, and has been enhancing, the Homeland Security Information Network (HSIN). It also has proposed a follow-on system, called Next Generation HSIN (HSIN Next Gen). GAO was asked to determine wheth...
Nuclear Security: Los Alamos National Laboratory Faces Challenges In Sustaining Physical and Cyber Security Improvements
GAO-08-1180T: Published: Sep 25, 2008. Publicly Released: Sep 25, 2008.
Los Alamos National Laboratory (LANL) is one of three National Nuclear Security Administration (NNSA) laboratories that designs and develops nuclear weapons for the U.S. stockpile. LANL employees rely on sensitive and classified information and assets that are protected at different levels, depending on the risks posed if they were lost, stolen, or otherwise compromised. However, LANL has experien...
Health Information Technology: HHS Has Taken Important Steps to Address Privacy Principles and Challenges, Although More Work Remains
GAO-08-1138: Published: Sep 17, 2008. Publicly Released: Sep 17, 2008.
Although advances in information technology (IT) can improve the quality and other aspects of health care, the electronic storage and exchange of personal health information introduces risks to the privacy of that information. In January 2007, GAO reported on the status of efforts by the Department of Health and Human Services (HHS) to ensure the privacy of personal health information exchanged wi...
Information Technology: Federal Laws, Regulations, and Mandatory Standards to Securing Private Sector Information Technology Systems and Data in Critical Infrastructure Sectors
GAO-08-1075R: Published: Sep 16, 2008. Publicly Released: Sep 16, 2008.
Federal policy identifies 18 infrastructure sectors--such as banking and finance, energy, public health and healthcare, and telecommunications--that are critical to the nation's security, economy, public health, and safety. Because these sectors rely extensively on computerized information systems and electronic data, it is crucial that the security of these systems and data is maintained. Further...
Information Technology: Agriculture Needs to Strengthen Management Practices for Stabilizing and Modernizing Its Farm Program Delivery Systems
GAO-08-657: Published: May 16, 2008. Publicly Released: May 16, 2008.
The U.S. Department of Agriculture (USDA) has experienced significant problems with its information technology systems that support the delivery of benefits programs to farmers. In October 2006, these systems began experiencing considerable delays while attempting to process a large number of transactions, and by January 2007, the systems became inoperable for 1 month. In response to these issues,...