Editor’s Note: The OIG’s Audit Report is available here.
From: ExecutiveGov
A report by Energy Department acting Inspector General Rickey Hass says DOE has made progress on its efforts to transition from a compliance-based information technology security management strategy to a risk-based method.
Hass said Nov. 4 the department adopted a new software application for analysis of system vulnerabilities but his office found that some DOE-run facilities do not properly categorize IT risks and use security controls.
Leave a Reply