Semiannual Report: October 1, 2008 - March 31, 2009

This is a publication by GAO's Inspector General that concerns internal GAO operations. In accordance with Section 5 of the Government Accountability Office Act of 2008 (GAO Act), GAO is submitting the semiannual report for the first half of fiscal year 2009 for comments and its transmission to the Congress.

In this report, the Office of Inspector General (OIG) concludes that GAO has generally established an information security program consistent with the requirements of the Federal Information Security Management Act of 2002 (FISMA) and guidance issued by the Office of Management and Budget and the National Institute of Standards and Technology, but that GAO has not fully implemented several information security and privacy-related requirements.