GSA must secure online construction data, audit finds

Public Building Service needs to lock down sensitive building project data when posting in a shared online intranet

The General Services Administration needs greater security for its sensitive building information in online environments, according to a new report.

Officials in GSA’s Public Building Service (PBS) began using electronic project management software applications (e-PMs) in the 1990s to more easily share project information.

However, they put sensitive information at risk by using the e-PMs and other “groupware,” such as intranet Web sites, according to a GSA inspector general’s audit report. The report was released March 31. Even so, officials have not included these online systems under the purview of its security program or ensured that the e-PMs comply with Federal Information Security Management Act requirements.


Related stories:

GSA solicits wisdom of the crowd for acquisition improvements

DOD policy targets weak link in information security

GAO cites information security weaknesses


The auditors recommended that PBS develop a way to secure existing e-PMs and set standards for applications that will come with future construction projects. They also recommend training managers on information security, the report states.

For example, PBS policy essentially makes construction project managers responsible for security without support from either GSA's Office of the Senior Agency Information Security Officer or PBS' Office of the Chief Information Officer, the auditors found.

PBS officials agreed with the recommendations.

About the Author

Matthew Weigelt is a freelance journalist who writes about acquisition and procurement.

The Fed 100

Save the date for 28th annual Federal 100 Awards Gala.

Featured

  • computer network

    How Einstein changes the way government does business

    The Department of Commerce is revising its confidentiality agreement for statistical data survey respondents to reflect the fact that the Department of Homeland Security could see some of that data if it is captured by the Einstein system.

  • Defense Secretary Jim Mattis. Army photo by Monica King. Jan. 26, 2017.

    Mattis mulls consolidation in IT, cyber

    In a Feb. 17 memo, Defense Secretary Jim Mattis told senior leadership to establish teams to look for duplication across the armed services in business operations, including in IT and cybersecurity.

  • Image from Shutterstock.com

    DHS vague on rules for election aid, say states

    State election officials had more questions than answers after a Department of Homeland Security presentation on the designation of election systems as critical U.S. infrastructure.

  • Org Chart Stock Art - Shutterstock

    How the hiring freeze targets millennials

    The government desperately needs younger talent to replace an aging workforce, and experts say that a freeze on hiring doesn't help.

  • Shutterstock image: healthcare digital interface.

    VA moves ahead with homegrown scheduling IT

    The Department of Veterans Affairs will test an internally developed scheduling module at primary care sites nationwide to see if it's ready to service the entire agency.

  • Shutterstock images (honglouwawa & 0beron): Bitcoin image overlay replaced with a dollar sign on a hardware circuit.

    MGT Act poised for a comeback

    After missing in the last Congress, drafters of a bill to encourage cloud adoption are looking for a new plan.

Reader comments

Tue, Apr 6, 2010

GSA as an organiztion is and has always been disfunctional. This is one agency that should be scattered to the wind. It is so inbread with staff hirings, that it can't be fixed. Our Agency told GSA in the 90's not to put any of our security and construction information into their electronic systems. This was a constant battle with their uninformed staff.

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group