EPA Needs to Improve Processes for Updating Guidance, Monitoring Corrective Actions, and Managing Remote Access for External Users

Submitting OIG:

Environmental Protection Agency OIG

Report Description:

Deficiencies in the EPA’s information technology internal controls could be used to exploit weaknesses in Agency applications and hinder the EPA’s ability to prevent, detect, and respond to emerging cyberthreats.

Date Issued:

Friday, April 16, 2021

Agency Reviewed / Investigated:

Environmental Protection Agency

Submitting OIG-Specific Report Number:

21-E-0124

Location(s):

Agency-Wide

Type of Report:

Audit

Questioned Costs:

Funds for Better Use:

Number of Recommendations:

Report updated under NDAA 5274:

Additional Details Link:

https://www.epa.gov/office-inspector-general/report-epa-needs-improve-processes-…

Related Open Recommendations

Recommendation Number	Recommendation Status	Significant Recommendation	Additional Details
21-E-0124_1	Open	No
Update information security procedures to make them consistent with current federal directives, including the National Institute of Standards and Technology Special Publication 800-53, Revision 5, Security and Privacy Controls for Information Systems and Organizations.

Recommendation Number

Recommendation Status

Significant Recommendation

Additional Details

21-E-0124_1

Open

Update information security procedures to make them consistent with current federal directives, including the National Institute of Standards and Technology Special Publication 800-53, Revision 5, Security and Privacy Controls for Information Systems and Organizations.

Search form

EPA Needs to Improve Processes for Updating Guidance, Monitoring Corrective Actions, and Managing Remote Access for External Users

Related Open Recommendations