From: FierceGovernmentIT
A report from the Commerce Department OIG said one flaw persisted from a previous audit in 2009
Failures in communication and a lack of remediation for known cybersecurity flaws pointed to the Bureau of Industry and Security’s continuous monitoring program as being ‘deficient,’ according to a report.
The U.S. Commerce Department Office of the Inspector General said in a report made publicly available last week that the BIS’s faulty scanning practices — which relied on outdated technology — increased compromise risk. The OIG further found that BIS did not follow protocol for remediating identified security weaknesses, including failing to fix more than 400 known critical- to high-risk security flaws.
Leave a Reply