Audit reveals new IT security weaknesses

The Federal Law Enforcement Training Center did not make much progress in addressing previously identified security weaknesses in its computer infrastructure last year, according to a new audit released by Homeland Security Department Inspector General Richard Skinner.

The center completed work on only two previous information technology security-related recommendations during the year. It also received 20 reissued notices of IT weaknesses, and nine notices of new IT weaknesses, the audit  said.

The audit of fiscal 2007 IT controls was performed by the KPMG LLP accounting firm, which developed a Notice of Findings and Recommendations for each control weakness it identified.

The weaknesses ranged across broad areas. For example, 21 of 30 randomly surveyed contractors for the center did not have appropriate background investigations.

The audit also found problems with access control, application development and controls, and software security.

About the Author

Alice Lipowicz is a staff writer covering government 2.0, homeland security and other IT policies for Federal Computer Week.

Featured

  • Veterans Affairs
    Veterans Affairs CIO Jim Gfrerer speaks at an Oct. 10 FCW event (Photo credit: Troy K. Schneider)

    VA's pivot to agile

    With 10 months on the job, Veterans Affairs CIO Jim Gfrerer is pushing his organization toward a culture of constant delivery.

  • Defense
    Dana Deasy, DOD Chief Information Officer, hosts a roundtable discussion on the enterprise cloud initiative with reporters, Aug. 9, 2019, at the Pentagon, Washington, D.C. (DoD photo by Air Force Staff Sgt. Andrew Carroll)

    DOD CIO 'very confident' that White House influence didn't guide JEDI award

    At his Senate confirmation hearing, Defense Department CIO Dana Deasy said the department's $10 billion cloud contract was awarded by a team of experts.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.