NASA challenge: Directing IT security

NASA’s Inspector General says that information technology security is one of eight top management and performance challenges facing the space agency. GovInfoSecurity reports that Inspector General Paul Martin finds the agency’s CIO has limited ability to direct its mission directorates to implement IT security. Some of the same criticisms have appeared in earlier audits. Martin says that NASA has failed to comply with FISMA — the Federal Information Security Management Act — for annual security controls testing and contingency plan testing. He also says NASA’s CIO didn’t implement a formal policy for managing mitigation plans.

This story is part of Federal News Radio’s daily Cybersecurity Update brought to you by Tripwire. For more cybersecurity news, click here.