FDIC info security lacking, GAO finds

Weaknesses in the Federal Deposit Insurance Corp.'s information systems place sensitive information at risk of unauthorized disclosure, disruption of operations or loss of assets, according to the General Accounting Office.

Congressional auditors found that the corporation had resolved almost all the computer security weaknesses from 2001 and 2002. But the 2003 audit found new vulnerabilities in its information systems.

FDIC must establish controls and ensure information security receives enough attention, auditors said. GAO recommended that the agency's chief information officer correct a number of information security weaknesses and improve the ability of its computer security management program to test and evaluate security measures.

Officials from FDIC agreed with the recommendations and plans to follow them, according to the GAO report.