(OUO)-Independent Evaluation of NRC’s Potential Compromise of Systems (Social Engineering)
Report Information
Recommendations
Perform periodic spot checks for employees away during the 15-minute window before the screen locks to ensure that PCs are being protected from unauthorized viewing.
Verify or update training for the NRC cleaning staff so that they are not using methods to keep corridor doors open during cleaning operations. Perform spot checks to ensure that they are complying with all security procedures.
Provide OIG with a strategy to ensure the risk sensitive information is not left unattended in NRC office desks or uncontrolled spaces.
Provide OIG with a strategy to ensure the risk sensitive information is not left unattended in NRC office desks or uncontrolled spaces.