Tags security audit

Improve controls on classified information, inspector general tells U.S. intelligence community

by Shannon Vavra • 3 months ago

The IC has to ramp up how it manages and mitigates "the risk that a trusted privileged user could inappropriately access, modify, destroy, or exfiltrate classified data,” a new report says.

How to demonstrate trust in cybersecurity practices with organization leaders

by CyberScoop Staff • 9 months ago

A new report advises CISOs to measure their security investments and identify critical weaknesses by conducting continuous penetration testing.

As threats increase, audit finds federal agencies struggle to implement cyber plans

by Sean Lyngaas • 1 year ago

“Until agencies more effectively implement the government’s approach and strategy, federal systems will remain at risk,” GAO warned.

Symantec's stock plummets after announcement of internal audit

by Zaid Shoorbajee • 2 years ago

Symantec is conducting an investigation over “concerns raised by a former employee.”

Watchdog group calls on HHS to improve cyber defenses

by Zaid Shoorbajee • 2 years ago

The Department of Health and Human Service's Office of Inspector General said that a penetration test on four operating divisions identified "configuration management and access control vulnerabilities."

Auditors get guidance on SSH key management

by Shaun Waterman • 2 years ago

A new guide for auditors says SSH key management should be on their checklist because the proliferation of unmanaged keys for the ubiquitous encryption protocol means IT networks can't be guaranteed as secure.

TwitterFacebookLinkedInRedditGoogle Gmail