U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Independent Evaluation of NRC's Implementation of the Federal Information Security Management Act for Fiscal Year 2008

Report Information

Date Issued
Report Number
OIG-08-A-18
Report Type
Inspection / Evaluation
Joint Report
Yes
Participating OIG
Nuclear Regulatory Commission OIG
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
View report on Oversight.gov

Recommendations

Update the NRC System Information Control Database to identify all interfaces between systems.

Develop and implement procedures to ensure interface information in the NRC SystemInformation Control Database is consistent with interface information in security plansand risk assessments.

Develop agencywide policy and procedures regarding the implementation and monitoringof Federal Desktop Core Configuration controls for all desktop and laptop computers,including both those that are centrally managed under the agency’s seat managementcontract and those that are owned by the agency regardless of whether or not they areconnected to the agency’s network.

Develop a process for verifying that all Federal Desktop Core Configuration controls areimplemented for all desktop and laptop computers, including both those that are centrallymanaged under the agency’s seat management contract and those that are owned by theagency regardless of whether or not they are connected to the agency’s network.