Issues

Government Authentication
Personal Identity
Federal Standards
Governance
R&D
Resources
Legislation and Policy
Liability
Power Grid
Procurement


Library

o Government Authentication Library
o Personal Identity Library
o Federal Standards Library
o Governance Library
o R&D Library
o Resources Library
o Legislation and Policy Library

CRE Interventions
  Agency Administrative Actions
  Rulemaking
  Litigation

 ICANNfocus Archives

  

GAO: SEC’s Data Security
The GAO has released a new report stating that the Securities and Exchange Commission needs to strengthen its oversight of data security. According to the report, the SEC needs to improve control over user accounts and passwords, access rights and permissions, network security and audit, and monitoring of security events to prevent unauthorized access to its systems.

“‘Sensitive data—including payroll and financial transactions, personnel data, regulatory, and other mission critical information—are at increased risk of unauthorized disclosure, modification or loss, possibly without being detected,’ said Gregory Wilshusen, GAO’s director for information security issues.”

“’We also understand that the GAO is not advocating ‘quick fixes,’ but rather a sustained effort that deeply embeds the principles of strong information security throughout our technical environment, our agencywide business processes and our organizational culture,’ SEC officials responded in a letter earlier this month.”

  • Click to learn more


    • Copyright © 2005 The Center for Regulatory Effectiveness.
    All rights reserved.