The inspector general at GSA says his agency has failed to apply its own IT security requirements. Auditors found lax password management for database administrator accounts and database and operating system software that wasn’t securely configured. They say the weaknesses stem from security officials who didn’t apply key requirements from the agency’s IT security policy. GSA says it agrees with the findings. The IG recommends the agency better monitor how security officials apply policy requirements.
This story is part of Federal News Radio’s daily Cybersecurity Update brought to you by Tripwire. For more cybersecurity news, click here.
Tom Temin is the host of The Federal Drive, which airs from 6-8 a.m. on 1500 AM in the Washington, D.C. region and online everywhere. Tom has 30 years experience in journalism, mostly in technology markets. Before coming to Federal News Radio, he was a long-serving editor-in-chief of Government Computer News and Washington Technology magazines.