FDIC info security lacking, GAO finds

[InfoSec News <isn () c4i org>]

http://www.fcw.com/fcw/articles/2004/0524/web-fdic-05-28-04.asp

By Sarita Chourey 
May 28, 2004

Weaknesses in the Federal Deposit Insurance Corp.'s information
systems place sensitive information at risk of unauthorized
disclosure, disruption of operations or loss of assets, according to
the General Accounting Office.

Congressional auditors found that the corporation had resolved almost
all the computer security weaknesses from 2001 and 2002. But the 2003
audit found new vulnerabilities in its information systems.

FDIC must establish controls and ensure information security receives
enough attention, auditors said. GAO recommended that the agency's
chief information officer correct a number of information security
weaknesses and improve the ability of its computer security management
program to test and evaluate security measures.

Officials from FDIC agreed with the recommendations and plans to
follow them, according to the GAO report.



_________________________________________
ISN mailing list
Sponsored by: OSVDB.org