Stay Informed
of New Reports
Twitter
Where To Report Waste
Fraud, Abuse, Or Retaliation
Where To Report Waste Fraud, Abuse, Or Retaliation

Audit of USITC’s Patching of Critical and High Vulnerabilities on the International Trade Commission Network

Submitting OIG: 
International Trade Commission OIG
Report Description: 
The U.S. International Trade Commission’s (Commission) Office of Inspector General conducted this audit to determine if the Commission effectively patches critical and high vulnerabilities on the International Trade Commission Network, known as ITCNet. The ITCNet includes the hardware, software, applications, databases, communications, and Internet access to support the Commission’s mission and daily operations.
Date Issued: 
Monday, September 19, 2022
Agency Reviewed / Investigated: 
International Trade Commission
Submitting OIG-Specific Report Number: 
OIG-AR-22-10
Component, if applicable: 
U.S. International Trade Commission
Location(s): 
Agency-Wide
Type of Report: 
Audit
Questioned Costs: 
$0
Funds for Better Use: 
$0
Number of Recommendations: 
3
View Document: 
AttachmentSize
PDF icon OIG-AR-22-10.pdf1.62 MB

Related Open Recommendations

Recommendation Number Recommendation Status Significant Recommendation Additional Details
OIG-AR-22-10.02 Open No
Develop a process to: 1) verify that all authorized devices are being scanned or prioritized for scanning, 2) remove unauthorized devices from the network, 3) implement a tool or a process to monitor whether all authorized devices are being scanned, and 4) reconcile the authoritative list of systems approved to be on the network against the list of scanned devices at regular intervals for differences and keep the list up to date.
Displaying 1 of 1 Recommendations