Text of Recommendation | Work with FAA to improve its assessment process to meet DOT Cybersecurity Compendium and Security Authorization & Continuous Monitoring Performance Guide. DOT CIO in conjunction with the FAA CIO review the FAA quality assurance process to ensure all security documents are reviewed and updated to reflect the system controls, vulnerabilities, and that the current risks are clearly presented to the authorizing officials.
|
---|---|
Recommendation Number | 8 |
Recommendation Status | Open |
Significant Recommendation | Yes |
Recommendation Questioned Costs | $0 |
Recommendation Funds for Better Use | $0 |
Additional Details Link |
Submitting OIG | |
---|---|
Report Title | DOT Had Major Success in PIV Implementation, But Problems Persist In Other Cybersecurity Areas |
Report Submitting OIG-Specific Report Number | FI2016001 |
Report Date Issued | Thursday, November 5, 2015 |
Report Agency Reviewed / Investigated | |
Report Questioned Costs | $0 |
Report Funds for Better Use | $0 |