Anna Forrester
Deltek has highlighted the growing number of security incidents and high-risk areas in federal information systems in reports by the U.S. Computer Emergency Readiness Team and Government Accountability Office.
Kyra Fussell, a senior research analyst at Deltek, writes Tuesday that the recent addition to the high-risk list is the privacy of personally identifiable information.
According to Fussell, GAO identified security management, access control, configuration management, continuity of operations and segregation of duties as the top five vulnerable security controls across 24 federal agencies.
GAO said these vulnerabilities highlight challenges in the areas of personnel, governance and risk management in government.
“[Agencies] will still need to ensure they take a holistic view of risk management and attend to basic requirements like personnel training, consistent process application and employment of appropriate technologies,” Fussell said.
