The Department Mismanaged, Neglected, and Wasted Money on the Implementation of IT Security Requirements for Its National Security Systems

View Report

Date Issued

Wednesday, June 15, 2022

Submitting OIG

Department of Commerce OIG

Other Participating OIGs

Department of Commerce OIG

Agencies Reviewed/Investigated

Department of Commerce

Components

Office of the Secretary

Report Number

OIG-22-023-I

Report Description

Our evaluation objective was to determine whether the Department and its bureaus are managing national security systems in compliance with federal and Departmental information technology security requirements.We found the following:I. The Department mismanaged and neglected information technology security requirements for its national security systems.II. The Department wasted at least $380,000 on a national security system that it did not use.

Report Type

Inspection / Evaluation

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Additional Details

https://www.oig.doc.gov/Pages/The-Department-Mismanaged-Neglected-and-Wasted-Mo…

Open Recommendations

This report has 1 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use	Additional Details
2	Yes	$0	$0
We recommend that the Deputy Secretary of Commerce ensure that the Chief Information Officer implement multi-factor authentication for access to all of the Department's NSS according to Committee on National Security Systems requirements.