Our evaluation objective was to determine whether the Department and its bureaus are managing national security systems in compliance with federal and Departmental information technology security requirements.We found the following:I. The Department mismanaged and neglected information technology security requirements for its national security systems.II. The Department wasted at least $380,000 on a national security system that it did not use.
Report File
Date Issued
Submitting OIG
Department of Commerce OIG
Other Participating OIGs
Department of Commerce OIG
Agencies Reviewed/Investigated
Department of Commerce
Components
Office of the Secretary
Report Number
OIG-22-023-I
Report Description
Report Type
Inspection / Evaluation
Agency Wide
Yes
Number of Recommendations
5
Questioned Costs
$0
Funds for Better Use
$0
Open Recommendations
This report has 1 open recommendations.
Recommendation Number | Significant Recommendation | Recommended Questioned Costs | Recommended Funds for Better Use | Additional Details | |
---|---|---|---|---|---|
2 | Yes | $0 | $0 | ||
We recommend that the Deputy Secretary of Commerce ensure that the Chief Information Officer implement multi-factor authentication for access to all of the Department's NSS according to Committee on National Security Systems requirements. |