Literaturnachweis - Detailanzeige
Institution | Office of Inspector General (ED) |
---|---|
Titel | The U.S. Department of Education's Federal Information Security Modernization Act of 2014 Report for Fiscal Year 2020. ED-OIG/A11U0001 |
Quelle | (2020), (114 Seiten)
PDF als Volltext |
Sprache | englisch |
Dokumenttyp | gedruckt; online; Monographie |
Schlagwörter | Public Agencies; Federal Legislation; Educational Legislation; Information Security; Information Technology; Program Effectiveness; Program Evaluation; Evaluation Methods; Computer Security; Risk Management; Privacy; Training; Contingency Management; Database Management Systems; Audits (Verification) |
Abstract | The objective of this audit was to determine whether the U.S. Department of Education's (Department) overall information technology (IT) security programs and practices were effective as they relate to Federal information security requirements. To answer this objective, the Department's performance was rated in accordance with Fiscal Year (FY) 2020 Inspector General (IG) Federal Information Security Modernization Act of 2014 (FISMA) Reporting Metrics. The metrics are grouped into five cybersecurity framework security functions (Identify, Protect, Detect, Respond, and Recover) that have a total of eight metric domains (as outlined in the National Institute of Standards and Technology's "Framework for Improving Critical Infrastructure Cybersecurity"). Although the Department had several notable improvements in implementing its cybersecurity initiatives, its overall IT security programs and practices were not effective in all of the five security functions. The report shows findings in all eight metric domains, which included findings with the same or similar conditions identified in prior reports. Twenty-four recommendations (8 of which are repeat recommendations) in all 8 metric domains are provided to assist the Department with increasing the effectiveness of its information security programs. (ERIC). |
Anmerkungen | Office of Inspector General, US Department of Education. Available from: ED Pubs. P.O. Box 1398, Jessup, MD 20794-1398. Tel: 877-433-7827; e-mail: edpubs@edpubs.ed.gov; Web site: https://www2.ed.gov/about/offices/list/oig/managementchallenges.html |
Erfasst von | ERIC (Education Resources Information Center), Washington, DC |
Update | 2024/1/01 |