| Text of Recommendation | The Deputy Secretary, or his designees, takes the following action to work with the OAs to develop a formal transition plan to the proposed ISCM target architecture that includes but is not limited to: (1) continuously assessing security controls; (2) reviewing system configuration settings; and (3) assessing timely remediation of security weaknesses. During the transition period, establish processes and practices for effectively collecting, validating, and reporting ISCM data.
|
|---|---|
| Recommendation Number | 2 |
| Recommendation Status | Open |
| Significant Recommendation | Yes |
| Recommendation Questioned Costs | $0 |
| Recommendation Funds for Better Use | $0 |
| Additional Details Link |
| Submitting OIG | |
|---|---|
| Report Title | DOT Had Major Success in PIV Implementation, But Problems Persist In Other Cybersecurity Areas |
| Report Submitting OIG-Specific Report Number | FI2016001 |
| Report Date Issued | Thursday, November 5, 2015 |
| Report Agency Reviewed / Investigated | |
| Report Questioned Costs | $0 |
| Report Funds for Better Use | $0 |