Audit of the Defense Nuclear Facilities Safety Board's Information Security Program
Report Information
Recommendations
Update information security guidance for classified and sensitive unclassified information so that it addresses management of information security breaches and protection of electronically processed information.
Implement technical controls in the DNFSB SharePoint site that limit access to UCNI documents on a need-to-know basis.
Incorporate into DNFSB policy the requirement for technical controls in SharePoint to control access to UCNI documents on a need-to know basis.