Blog
Year Published: 2024
Language: German with English Summary
Sector: Public e-services
Issue: Radio System
CUBE analysis
Read More...
Year Published: 2024
Language: English
Sector: Artificial intelligence
Issue: Governance
CUBE analysis
Year Published: 2024
Language: English
Sector: Artificial intelligence
Issue: Overview
CUBE analysis
Year Published: 2021
Language: English
Sector: Artificial intelligence
Issue: Algorithms
CUBE analysis
Read More...
Year Published: 2023
Language: English (Summary)
Sector: Cybersecurity
Issue: Contingency plans
CUBE analysis
Read More...
Year Published: 2024
Language: English
Sector: Cybersecurity
Issue: Coordination
CUBE analysis
Year Published: 2016
Language: English
Sector: Cybersecurity
Issue: Coordination
CUBE analysis
Read More...
Year Published: 2023
Language: English (Summary)
Sector: Cybersecurity
Issue: Servers' security
CUBA analysis
Year Published: 2022
Language: English (Summary)
Sector: Cybersecurity
Issue: Incident management
CUBE analysis
Read More...
Year Published: 2022
Language: Lithuanian
Sector: Cybersecurity
Issue: Coordination
CUBE analysis
Read More...
Year Published: 2017
Language: English (Summary)
Sector: Cybersecurity
Issue: Governance level
CUBE analysis
Year Published: 2023
Language: English (Summary)
Sector: Cybersecurity
Issue: Strategic level
CUBE analysis
Read More...
Year Published: 2019
Language: English
Sector: Cybersecurity
Issue: Cyber resilience
CUBE analysis
Read More...
Year Published: 2023
Language: Lithuanian
Sector: e-Services
Issue: Availability
CUBE analysis
Read More...
Year Published: 2013
Language: Polish
Sector: Public e-Services
Issue: Informatization of health sector
CUBE analysis
Read More...
Year Published: 2022
Language: English (Summary)
Sector: Cybersecurity
Issue: System organization
CUBE analysis
Read More...
Year Published: 2023
Language: English (Summary)
Sector: Cybersecurity
Issue: Civil register
CUBE analysis
Read More...
Year Published: 2012
Language: English (Summary)
Sector: Government eServices
Issue: Information Society
CUBE analysis
Read More...
Year Published: 2022
Language: English (Summary)
Sector: Government eServices
Issue: Accessibility of eServices
CUBE analysis
Read More...
Year Published: 2023
Language: English (Summary)
Sector: Government eServices
Issue: Public database
CUBE analysis
Read More...
Year Published: 2021
Language: English (Summary)
Sector: Government eServices
Issue: Electronic Address
CUBE analysis
Read More...
Year Published: 2023
Language: German (Original report)
Sector: Government eServices
Issue: Management of the public key infrastructure
CUBE analysis
Read More...
Year Published: 2022
Language: English
Sector: Infrastructure
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2019
Language: French
Sector: Institution
Issue: Information system
Read More...
Year Published: 2019
Language: French
Sector: Public administration
Issue: Monitoring compliance with European law on public subsidies for social housing
Read More...
Year Published: 2014
Language: English
Sector: Justice, Internal Affairs, Defence
Issue: Assessment of general controls of Information Systems at the Ministry of Justice, in particular - strategic planning, data architecture, investment management. Maturity assessment of key governance/ management processes.
Read More...
Year Published: 2020
Language: English
Sector: Protecting Cybersecurity of Critical Infrastructure
Issue: Modern commercial airplanes use avionics systems and networks to share data—for GPS, weather, and communications—with pilots, maintenance crews, other aircraft, and air traffic controllers. Protection from cyberattacks is critical to safety. Airplane manufacturers have cybersecurity controls in place and there haven't been reports of successful cyberattacks on commercial airplane IT systems to date. But evolving cyber threats and increasing connectivity between airplanes and other systems could put future flight safety at risk if the FAA doesn't prioritize oversight. We recommended that the FAA strengthen cybersecurity oversight for airplanes.
Read More...
Year Published: 2020
Language: English
Sector: Security of Emerging Technologies
Issue: Quantum technologies could revolutionize sensors, computation, and communication. These technologies build on the study of the smallest particles of energy and matter to collect, generate, and process information in ways existing technologies can’t. For example, quantum sensors may be able to locate stealth targets or determine an object’s location and speed without GPS. Quantum computers may dramatically accelerate computing for some applications, such as decrypting information. Quantum communications may also allow completely secure information sharing. These technologies may need many years of development to reach their full potential.
Read More...
Year Published: 2021
Language: English
Sector: Information Systems
Issue: Weaknesses in Federal Agency Information Security Programs
Year Published: 2021
Language: English
Sector: Public Administration
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2021
Language: English
Sector: Cybersecurity
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2021
Language: English
Sector: Data Protection
Issue: Protecting Privacy and Sensitive Data
Read More...
Year Published: 2021
Language: English
Sector: Data Protection
Issue: Protection of privacy of sensitive data
Read More...
Year Published: 2021
Language: English
Sector: Data Protection
Issue: Protecting Privacy and Sensitive Data
Read More...
Year Published: 2021
Language: English
Sector: Cybersecurity and Infrastructure
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2021
Language: English
Sector: Cybersecurity and Infrastructure
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2021
Language: English
Sector: Cybersecurity and Infrastructure
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2021
Language: English
Sector: Cybersecurity
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2021
Language: English
Sector: Cybersecurity
Issue: National Cybersecurity and Global Cyberspace
Read More...
Year Published: 2021
Language: English
Sector: Information Systems
Issue: Weaknesses in Federal Agency Information Security Programs
Year Published: 2021
Language: English
Sector: Information Systems
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2021
Language: English
Sector: Information Systems
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2021
Language: English
Sector: Health and Information Systems
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2021
Language: English
Sector: Public Administration
Issue: Weaknesses in Federal Agency Information Security Programs
Year Published: 2021
Language: English
Sector: Cybersecurity
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2021
Language: English
Sector: Data Protection
Issue: Protecting Privacy and Sensitive Data
Read More...
Year Published: 2021
Language: English
Sector: Cybersecurity
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2021
Language: English
Sector: Public Administration
Issue: National Cybersecurity and Global Cyberspace
Year Published: 2021
Language: English
Sector: Cybersecurity and Infrastructure
Issue: National Cybersecurity and Global Cyberspace
Year Published: 2021
Language: English
Sector: Cybersecurity
Issue: Response to Cyber Incidents
Read More...
Year Published: 2020
Language: English
Sector: Security of Emerging Technologies
Issue: "Internet of Things" technology refers to devices collecting information, communicating it to a network and, in some cases, completing a task—like unlocking doors using a smartphone application. Many agencies use this technology to control equipment, monitor building systems, or perform other tasks. There are benefits to this technology, however, some agencies do not use the technology due to cybersecurity challenges and other concerns.
Read More...
Year Published: 2022
Language: English
Sector: Data Protection
Issue: Protecting Privacy and Sensitive Data
Read More...
Year Published: 2020
Language: English
Sector: Security of Emerging Technologies
Issue: Fifth-generation (5G) wireless promises not just to increase speeds but to enable new applications like automated cars and smart factories. GAO reviewed U.S. 5G development.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2020
Language: English
Sector: Protecting Privacy and Sensitive Data
Issue: Businesses can use facial recognition technology to verify or identify people and provide them with access to buildings or online accounts. They can also use the technology to authorize payments, identify shoplifters, and even monitor the spread of COVID-19. But advocacy groups and others have raised privacy and accuracy concerns
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Response to Cyber Incidents
Read More...
Year Published: 2020
Language: English
Sector: Protecting Privacy and Sensitive Data
Issue: "Schools and school districts collect and store a lot of personal information about their students. GAO found that thousands of K-12 students had their personal information compromised in data breaches between 2016 and 2020. Compromised data included grades, bullying reports, and Social Security numbers—leaving students vulnerable to emotional, physical, and financial harm. Breaches were accidental and intentional—with a variety of responsible actors and motives. Wealthier, larger, and suburban school districts were more likely to have a reported breach. "
Read More...
Year Published: 2020
Language: English
Sector: Protecting Privacy and Sensitive Data
Issue: GAO reviewed personal information banks and credit unions collect on consumers and share with others, and what they tell consumers about this. GAO found the form institutions use to provide privacy notices to consumers does not give a complete picture of the information collected and shared.
Read More...
Year Published: 2020
Language: English
Sector: Protecting Privacy and Sensitive Data
Issue: The Department of Housing and Urban Development collects huge amounts of sensitive personal information for its housing, community investment, and mortgage loan programs. HUD often shares this information with affiliated agencies; contractors; and state, local, and tribal groups. HUD isn't taking enough action to protect information exchanged with others.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2022
Language: English
Sector: Information Technology
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2020
Language: English
Sector: Protecting Cybersecurity of Critical Infrastructure
Issue: Cyber threats to the nation's critical infrastructure (e.g., financial services and energy sectors) continue to increase and represent a significant national security challenge. To better address such threats, NIST developed, as called for by federal law, a voluntary framework of cybersecurity standards and procedures. The Cybersecurity Enhancement Act of 2014 included provisions for GAO to review aspects of the framework.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Weaknesses in Federal Agency Information Security Programs
Read More...
Year Published: 2020
Language: English
Sector: Protecting Cybersecurity of Critical Infrastructure
Issue: Terrorists and others may pose a cyber-threat to high-risk chemical facilities. Control systems, for example, could be manipulated to release hazardous chemicals. The Department of Homeland Security started a program more than a decade ago to help address these security risks.
Read More...
Year Published: 2022
Language: English
Sector: Artificial Intelligence
Issue: Security of emerging technologies
Read More...
Year Published: 2020
Language: English
Sector: Protecting Cybersecurity of Critical Infrastructure
Issue: The financial services sector, a critical component of the nation's infrastructure that holds over $108 trillion in assets, is an increasingly attractive target for cyber-based attacks. The sector includes banks, mutual funds, and securities dealers. The Treasury Department and other federal agencies are taking steps to reduce risks and bolster the sector's efforts to improve its cybersecurity
Read More...
Year Published: 2020
Language: English
Sector: National Cybersecurity and Global Cyberspace
Issue: States need to follow cybersecurity requirements while using Federal data.
Read More...
Year Published: 2020
Language: English
Sector: National Cybersecurity and Global Cyberspace
Issue: Need to define clear leadership roles in order to manage and bolster the cybersecurity of key government systems and the nation's cybersecurity
Read More...
Year Published: 2020
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: The Department of Homeland Security issues mandatory cybersecurity directives for most federal agencies. If the actions specified in these directives are not addressed, agency systems can remain at risk.
Read More...
Year Published: 2020
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: Department of Homeland Security (DHS) gives agencies cybersecurity tools that identify the hardware and software on their networks and check for vulnerabilities and insecure configurations.
Read More...
Year Published: 2020
Language: English
Sector: Global Supply Chain Risks
Issue: Federal Agencies rely on information and communications technology products to carry out their operations. The global supply chain for this technology faces threats
Read More...
Year Published: 2020
Language: English
Sector: Cybersecurity Workforce Management Challenges
Issue: Automated technologies in planes, trains, and passenger vehicles can perform tasks without the need for human operators—like crash avoidance systems that automatically slow cars down to avoid a collision. The Department of Transportation needs a workforce with skills related to these technologies in order to ensure the technologies are safe to use.
Read More...
Year Published: 2023
Language: English
Sector: Cybersecurity
Issue: Data privacy and protection
Read More...
Year Published: 2020
Language: English
Sector: Cybersecurity Workforce Management Challenges
Issue: In 2018, the administration released its government-wide reform plan aimed at making the federal government more efficient and effective. The Office of Management and Budget oversees the proposals with support from other lead agencies. This report looks at 5 different reform proposals.
Read More...
Year Published: 2023
Language: English
Sector: Cybersecurity
Issue: Cyber risks
Read More...
Year Published: 2023
Language: English
Sector: Infrastructure
Issue: Protection of critical infrastructure
Read More...
Year Published: 2019
Language: English
Sector: Weaknesses in Federal Agency Information Security Programs
Issue: In an effort to control rising costs, the Census Bureau plans to implement several innovations for the 2020 Census, including new IT systems. GAO has made 97 recommendations on the 2020 Census. As of April 2019, 72 had been implemented. This testimony also makes 2 new recommendations to improve Bureau cybersecurity efforts.
Read More...
Year Published: 2019
Language: English
Sector: Weaknesses in Federal Agency Information Security Programs
Issue: To protect against cyber threats, federal agencies should incorporate key practices in their cybersecurity risk management programs. All but one of the 23 agencies we reviewed designated a risk executive. However, none of these agencies fully incorporated the other key practices into their programs. GAO made 58 recommendations to federal agencies to help improve their cybersecurity risk management programs.
Read More...
Year Published: 2023
Language: English
Sector: Information Systems
Issue: weaknesses in federal agency information security programs
Read More...
Year Published: 2023
Language: English
Sector: Cybersecurity
Issue: weaknesses in federal agency information security programs
Read More...
Year Published: 2019
Language: English
Sector: Protecting Privacy and Sensitive Data
Issue: Consumer reporting agencies are companies that collect, maintain, and sell vast amounts of sensitive data. In 2017, a breach at Equifax, one of the largest of these companies, compromised at least 145.5 million consumers' data. Consumers have little control over what information these companies have, so federal oversight is important—and it could be improved. GAO recommended improving federal enforcement of data safeguards and oversight of these companies' security practices.
Read More...
Year Published: 2023
Language: English
Sector: Information Technology
Issue: Security of emerging technologies
Read More...
Year Published: 2019
Language: English
Sector: Protecting Privacy and Sensitive Data
Issue: Each year, about 90% of people file their taxes using commercial software or a paid tax return preparer. If these "third parties" that handle your tax information are hacked, your personal information could be exposed—leaving you vulnerable to identity theft.
Read More...
Year Published: 2023
Language: English
Sector: Information Technology
Issue: Global supply chain risks
Read More...
Year Published: 2019
Language: English
Sector: Protecting Privacy and Sensitive Data
Issue: Consumer reporting agencies collect vast amounts of information on people, such as their debt and work histories. They package the information into reports and sell it. GAO looked at inaccuracies in those reports, which can have real consequences—especially for job seekers or people who need credit.
Read More...
Year Published: 2023
Language: English
Sector: Cybersecurity
Issue: cybersecurity risks
Read More...
Year Published: 2019
Language: English
Sector: Protecting Cybersecurity of Critical Infrastructure
Issue: The nation’s electric grid is becoming more vulnerable to cyberattacks—particularly those involving industrial control systems that support grid operations. Recent federal assessments indicate that cyberattacks could cause widespread power outages in the United States, but the scale of such outages is uncertain.
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: In an effort to control rising costs, the Census Bureau plans to implement several innovations for the 2020 Census, including new IT systems.
Read More...
Year Published: 2023
Language: English
Sector: Cybersecurity
Issue: Protection of confidentiality, integrity, and availability of their systems and effectively respond to cyberattacks.
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: In an effort to control rising costs, the Census Bureau plans to implement several innovations for the 2020 Census, including new IT systems. This testimony describes why GAO added the 2020 Census to its High Risk List in February 2017, and steps the Bureau must take to reduce risk and count people cost-effectively. These include completing IT system development and testing and addressing cybersecurity issues.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Cyber crime
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: Open source software is code released under a license that grants users the right to modify, share, and reuse the software. Making code available for reuse as open source can have major benefits such as reducing costs and improving efficiency. Congress required the Department of Defense to start an open source software pilot program in accordance with requirements from the Office of Management and Budget. GAO found DOD hasn’t fully implemented a program that meets these requirements. GAO also found concerns among some DOD officials over open source cybersecurity.
Read More...
Year Published: 2022
Language: English
Sector: Information Management
Issue: Appropriately limit collection and use of personal information and ensure it is obtained with appropriate knowledge or consent
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: The VA’s health information system is more than 30 years old and is costly to maintain. Over nearly 2 decades, VA’s multiple modernization efforts have continually fallen short. In June 2017, VA announced it would buy the same system DOD is implementing. VA plans to continue using its current system during a decade-long transition. GAO reviewed the early stages of this transition. Among other things, GAO found VA lacked insight into the total costs for the current system. This could make it more difficult to make decisions during the transition to the new system. GAO recommended VA more reliably identify and report system costs.
Read More...
Year Published: 2022
Language: English
Sector: Data Privacy
Issue: Protection of privacy of sensitive data
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: The federal government has spent billions on information technology projects that have failed or performed poorly. Some agencies have had massive cybersecurity failures. These IT efforts often suffered from ineffective management.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Cyber insurance; Protecting the cybersecurity of critical infrastructure
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: The U.S. government plans to spend over $90 billion this fiscal year on information technology. Most of that will be used to operate and maintain existing systems, including aging (also called legacy) systems. These systems can be more costly to maintain and vulnerable to hackers. GAO analyzed 65 federal legacy systems and identified the 10 most critical at 10 agencies ranging from Defense to Treasury. The systems were 8 to 51 years old. Three agencies had no documented plans to modernize. Two had plans that included key practices for success.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Protecting the cybersecurity of critical infrastructure
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: The Veterans Administration established the Family Caregiver Program in 2011 to help families provide care to seriously injured veterans. It developed an IT system to help it run this program but the system has many problems.
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: To reform government-wide information technology management, Congress enacted the Federal Information Technology Acquisition Reform Act (commonly referred to as FITARA) in 2014. GAO reviewed nine agencies and found 12 practices officials said helped them to effectively implement one or more of the FITARA provisions.
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: Federal agencies operate thousands of data centers and since 2010 have been required to close unneeded facilities and improve the performance of the remaining centers. Across the government, agencies have closed 6,250 centers to date and saved $2.7 billion. However, only 2 agencies in GAO's review planned to meet September 2018 government-wide optimization goals that include, for example, a target for how much time data servers sit unused. GAO recommended that agencies improve data centers' operational efficiency and identify further savings
Read More...
Year Published: 2022
Language: English
Sector: Infrastructure
Issue: Weakness in the federal role in protecting the cybersecurity of critical infrastructure
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: FEMA awarded more than $22 billion in grants for four major disasters in 2017 alone. It manages these and other grants in numerous, disparate information technology systems that it has been attempting to modernize. GAO reviewed FEMA's Grants Management Modernization program.
Read More...
Year Published: 2022
Language: English
Sector: Health and Information Systems
Issue: cyber incidents targeting federal systems
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: Each year, federal agencies spend $90 billion on IT. Cloud computing services—on-demand access to shared resources such as networks, servers, and data storage—can help agencies deliver better IT services for less money. However, agencies don't consistently track cloud-related savings, making it hard for them to make informed decisions on whether to use cloud services. GAO recommended that agencies improve their savings tracking.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: cyber incidents targeting federal systems
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: Federal Agencies are required to have information security programs. The Office of Management and Budget oversees these efforts. This report found that most agencies sampled had weaknesses in most security control areas, and 18/24 agencies had ineffective programs.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Weaknesses in federal agency information security programs
Read More...
Year Published: 2019
Language: English
Sector: Improving Implementation of Cybersecurity Initiatives
Issue: Federal agencies are increasingly using cloud computing services. Cloud computing offers benefits but also poses cybersecurity risks. Office of Management and Budget (OMB) requires agencies to use the Federal Risk and Authorization Management Program to authorize their use of cloud services. The 4 case study agencies GAO looked at, didn’t fully implement key elements of the authorization process. OMB didn’t monitor use of the program.
Read More...
Year Published: 2022
Language: English
Sector: Information Security
Issue: Weaknesses in federal agency information security programs
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Weaknesses in federal agency information security programs
Read More...
Year Published: 2019
Language: English
Sector: Cybersecurity Workforce Management Challenges
Issue: This testimony discusses our work on information technology challenges at the Department of Veterans Affairs. The Department of Veterans Affairs (VA) has made limited progress toward addressing information technology (IT) system modernization challenges.
Read More...
Year Published: 2022
Language: English
Sector: Cloud Computing
Issue: Agencies face challenges in: ensuring cybersecurity, procuring cloud services, maintaining a skilled workforce, and tracking cost and savings.
Read More...
Year Published: 2019
Language: English
Sector: Cybersecurity Workforce Management Challenges
Issue: The federal government needs a qualified, well-trained cybersecurity workforce to protect vital IT systems.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Implementation of government wide cybersecurity initiatives
Read More...
Year Published: 2019
Language: English
Sector: Cybersecurity Workforce Management Challenges
Issue: Identifying skill gaps and staffing needs is key to addressing the federal government’s IT workforce challenges.
Read More...
Year Published: 2022
Language: English
Sector: Infrastructure
Issue: Security of emerging technologies
Read More...
Year Published: 2018
Language: English
Sector: Security of Emerging Technologies
Issue: Artificial intelligence (AI) could improve human life and economic competitiveness—but it also poses new risks.
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Cybersecurity workforce management challenges
Read More...
Year Published: 2018
Language: English
Sector: Infrastructure
Issue: Protecting Cybersecurity of Critical Infrastructure
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Cybersecurity workforce management challenges
Read More...
Year Published: 2022
Language: English
Sector: Cybersecurity
Issue: Comprehensive National Strategy for Cybsecurity
Read More...
Year Published: 2018
Language: English
Sector: Global Supply Chain Risks
Issue: Reliance on a global supply chain introduces multiple risks to federal information systems. Supply chain threats are present during the various phases of an information system's development life cycle and could create an unacceptable risk to federal agencies.
Read More...
Year Published: 2022
Language: Estonian
Sector: Public Administration
Issue: High Speed Internet issues
Read More...
Year Published: 2019
Language: English
Sector: Communication
Issue: Express Money: -User Agreement -Insurance General IT Controls: -Server Users -Backup -Disaster Recovery Planning -Information Technology Policy
Year Published: 2021
Language: Japanese
Sector: Heath
Issue: COVID-19, Mobile contact tracing application
Read More...
Year Published: 2019
Language: English
Sector: Public Administration
Issue: In an effort to control rising costs, the Census Bureau plans to implement several innovations for the 2020 Census, including new IT systems. GAO has made 97 recommendations on the 2020 Census. As of April 2019, 72 had been implemented. This testimony also makes 2 new recommendations to improve Bureau cybersecurity efforts.
Read More...
Year Published: 2018
Language: English
Sector: Science & Technology
Issue: Reliance on a global supply chain introduces multiple risks to federal information systems. Supply chain threats are present during the various phases of an information system's development life cycle and could create an unacceptable risk to federal agencies.
Read More...
Year Published: 2021
Language: English
Sector: Government Information Systems
Issue: A high proportion of appropriation was left unused or carried-over in some projects, in particular regarding development cost. The percentage of single bidding in competitive-bid contracts was high. Some systems were found to be underutilized, to have no targets set for grasping the utilization status, or to have no monitoring system in place. There was a considerable gap between the actual reduction in FY2020 in the operational cost and the target.
Read More...
Year Published: 2022
Language: English
Sector: Infrastructure
Issue: Protecting Cybersecurity of Critical Infrastructure
Read More...
Year Published: 2018
Language: English
Sector: Security of Emerging Technologies
Issue: Artificial intelligence (AI) could improve human life and economic competitiveness—but it also poses new risks.
Year Published: 2013
Language: Report in Estonian, summary in English
Sector: Public Administration
Issue: Maintenance of information systems, development of information systems
Year Published: 2018
Language: English
Sector: Public Administration
Issue: General Controls
Read More...
Year Published: 2017
Language: English
Sector: Health
Issue: Achievement of objectives
Read More...
Year Published: 2016
Language: English
Sector: Internal Affairs
Issue: General Controls
Read More...
Year Published: 2016
Language: English
Sector: Public Administration
Issue: Open data
Read More...
Year Published: 2015
Language: English
Sector: Internal Affairs
Issue: data security
Read More...
Year Published: 2015
Language: English
Sector: Public Administration
Issue: Control procedures
Read More...
Year Published: 2015
Language: English
Sector: Public Administration
Issue: Information resources
Year Published: 2015
Language: English
Sector: Public Administration
Issue: Cybersecurity
Read More...
Year Published: 2014
Language: English
Sector: Public Administration
Issue: e-services
Read More...
Year Published: 2013
Language: English
Sector: Internal Affairs
Issue: General Controls
Year Published: 2013
Language: English
Sector: Foreign Affairs
Issue: General Controls
Read More...
Year Published: 2013
Language: English
Sector: Internal Affairs
Issue: data security
Year Published: 2013
Language: English
Sector: Agriculture
Issue: General Controls
Year Published: 2012
Language: English
Sector: Public Finance
Issue: General Controls
Read More...
Year Published: 2011
Language: English
Sector: Transportation
Issue: Information System development, Integration
Year Published: 2011
Language: Lithuanian
Sector: Health
Issue: Information System development
Year Published: 2010
Language: Lithuanian
Sector: Education
Issue: Integration
Year Published: 2010
Language: Lithuanian
Sector: Tax Administration
Issue: General Controls
Read More...
Year Published: 2010
Language: Lithuanian
Sector: Public Administration
Issue: Legality of data exchange, data security
Read More...
Year Published: 2009
Language: English
Sector: Public Administration
Issue: General Controls
Year Published: 2009
Language: Lithuanian
Sector: Internal Affairs
Issue: General Controls
Read More...
Year Published: 2009
Language: Lithuanian
Sector: Environment
Issue: General Controls
Year Published: 2009
Language: Lithuanian
Sector: Transportation
Issue: General Controls
Read More...
Year Published: 2009
Language: Lithuanian
Sector: Public Administration
Issue: General Controls
Year Published: 2009
Language: Lithuanian
Sector: National Security
Issue: Information security
Read More...
Year Published: 2008
Language: Lithuanian
Sector: Environment
Issue: General Controls
Read More...
Year Published: 2008
Language: Lithuanian
Sector: Social Security
Issue: General Controls
Read More...
Year Published: 2008
Language: Lithuanian
Sector: Health
Issue: General Controls
Read More...
Year Published: 2008
Language: Lithuanian
Sector: Public Procurement
Issue: General Controls
Year Published: 2008
Language: Lithuanian
Sector: Public Finance
Issue:
Year Published: 2007
Language: Lithuanian
Sector: Energy
Issue: General Controls
Year Published: 2007
Language: Lithuanian
Sector: Internal Affairs
Issue: General Controls
Year Published: 2007
Language: Lithuanian
Sector: Internal Affairs
Issue: General and application controls
Year Published: 2007
Language: Lithuanian
Sector: Public Administration
Issue: Strategy, investment and project management, risk and security management, lifecycle of IS
Year Published: 2006
Language: Lithuanian
Sector: Information Systems
Issue: Strategy, investment and project management, risk and security management, lifecycle of IS
Year Published: 2021
Language: English
Sector: Governance
Issue: Cyber Security Strategies
Read More...
Year Published: 2020
Language: English
Sector: Public Finance
Issue: IT Controls and Cyber Security Risks
Read More...
Year Published: 2021
Language: English
Sector: Key Internal Controls
Issue: Safeguarding financial information from cyber threats
Read More...
Year Published: 2006
Language: Lithuanian
Sector: Public Fund
Issue: General Control, Data Security and Integrity, Governance and management of processes
Year Published: 2019
Language: Spanish
Sector: Economy
Issue:
Read More...
Year Published: 2020
Language: Spanish
Sector: Regiona Government
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Education
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Municipalities
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Municipalities
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Economy
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Justice
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Health
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Municipalities
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Economy
Issue:
Read More...
Year Published: 2019
Language: English
Sector: Public Administration of Prefectures and municipalities
Issue: IT Security
Read More...
Year Published: 2016
Language: English
Sector: Operation of Quasi governmental body
Issue: IT Security
Read More...
Year Published: 2019
Language: Spanish
Sector: Air force
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Health
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Customs
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Municipalities
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Health
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Economy
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Education
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Social welfare
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Security
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Social development
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Housing and urbanism
Issue:
Read More...
Year Published: 2018
Language: Spanish
Sector: Municipalities
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Treasury
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Public Administration
Issue:
Read More...
Year Published: 2019
Language: Spanish
Sector: Service - Telecommunications
Issue:
Read More...
Year Published: 2018
Language: English
Sector: Billing System
Issue: 1. Design of the system and mapping of business rules 2. Non-maintenance of Data dictionary 3. Information security issues like password management and audit trail 4. Weakness in input, processing control 5. Inconsistencies in data
Year Published: 2017
Language: English
Sector: Finance
Issue: 1. Inadequate Training of Users 2. Issues on Segreaton of duties and data access 3. Lack of BCP/DRP 4. System design deficiencies 5. Absence of input controls and validation checks led to incomplete data
Year Published: 2018
Language: English
Sector: Office Automation
Issue: 1. Partial implementatoin of WAMIS 2. Non-prepartion of Software Design Document 3. Deficiencies in Change Management process 4. Inefficient user management 5. Lack of Input and Validation controls 6. Deficient MIS module
Year Published: 2018
Language: English
Sector: Office Automation
Issue: 1. Deficiencies in System Design 2. Bypassing Segregation of duties 3. Inaccurate mapping of business rules 4. Weak process controls in the system
Year Published: 2016
Language: English
Sector: Office Automation
Issue: 1. Delay in completon of modules 2. non-establishment of Disaster Recovery site 3. lack of input and processing control 4. Discrepencies in Migration of Legacy data
Year Published: 2017
Language: English
Sector: Office Automation
Issue: 1. Deficiencies in Tender Processing system in the application 2. Inconsistencies in data 3. Incorrect mapping of business rules leading to excess procurement 4. Change Management Control and documention 5. Lack of third-party security assessment
Year Published: 2017
Language: English
Sector: Procurement
Issue: 1. non-mapping of Busines rules 2. Inadequate validation controls in the registration of users 3.Non-supply of Software Design Document, Functional Requirement Specifications Document, Back up policy and Disaster Recovery Plan
Year Published: 2015
Language: English
Sector: ERP System
Issue: 1. Weak logical access control 2. Lack of Segregation of duties 3. Inadequate BCP/DRP 4. Business rules not mapped into the system 5. Inaccurate and unreliable data
Year Published: 2016
Language: English
Sector: Finance
Issue: 1. Non-prepartion of User requirement specification( URS) and Detailed Project Report (DPR) 2. Inadequate application controls 3. Lack of IT Security 4. Inadequate documentation
Year Published: 2014
Language: English
Sector: Office Automation
Issue: 1. Non-running/Partial running of the application and non-functional modules 2. Inadequate logical access control and password policy 3. Lack of Physical Access Control 4. Improper application control
Year Published: 2015
Language: English
Sector: Billing System
Issue: 1. Non-consitution of Steering Committee 2. Inadequate input controls and validation checks 3.lack of BCP/DRP 4. Incorrect mapping of business rules 5. Inadequate change/modification procedure
Year Published: 2017
Language: English
Sector: Service
Issue: 1. Delay in Project Planning, implementation 2. Deficiencies in digitization of database 3. Supply Chain management was not fully functional 4.Absence of system certification and security audit
Year Published: 2016
Language: English
Sector: Revenue
Issue: 1. Unplanned and delayed implementation of scheme 2. Absence of SRS and non-execution of Software Development Agreement (SDA) 3.Business rules not mapped 4. Improper valuation of deeds. 5. IT Security and Internal Control mechanism
Year Published: 2017
Language: English
Sector: Billing System
Issue: 1. lack of IT and Security Policies 2. Lack of interface between various applications 3. Non-migration of legacy data 4. Master table-Design error and incomplete data 5. Lack of Data Security
Year Published: 2016
Language: English
Sector: Public Administration
Issue: 1. Slow-implemenation and insufficient non-monitoring of project 2. Procurement of hardware and hiring of services at higher cost 3. Inconsistencies in database
Year Published: 2016
Language: English
Sector: Public Administration
Issue: 1.Unutilization of Hardware procured 2. Incorrect mapping of business rules 3. Improper User Access and Role 4.Inadequate application control
Year Published: 2014
Language: English
Sector: Public Administration
Issue: 1. Incomplete and incorrect database 2. Acquisition/ Deficiencies in System Design 3. Ineffective linking of modules 4. Non-segregation of duties 5. Absence of Disaster Recovery Management System
Year Published: 2016
Language: English
Sector: Service
Issue: 1. Absence of IT Policy, IT Security Policy, Password Policy, Change Management Policy 2. Deficient Project monitoring and evaluation 3. System Design Deficiencies
Year Published: 2016
Language: English
Sector: Office Automation
Issue: 1. Lack of IT Policy and IT Security Policy 2. Deficiencies in System Design 3. lack in mapping of business rules 4.Deficient Input Controls and Validation Checks
Year Published: 2018
Language: French
Sector: Public Sector - Transport
Issue: Information systems/ Digital
Read More...
Year Published: 2015
Language: French
Sector: Public Administration
Issue: The financial information system
Read More...
Year Published: 2020
Language: French
Sector: Public Administration
Issue: Information system
Read More...
Year Published: 2015
Language: French
Sector: Public Administration
Issue: Risks relating to the information system
Year Published: 2015
Language: French
Sector: Public Administration
Issue: Human resources information system
Read More...
Year Published: 2015
Language: French
Sector: Public Administration
Issue: Gaps in information systems
Read More...
Year Published: 2016
Language: French
Sector: Public Administration
Issue: Efficiency of hospital information systems
Read More...
Year Published: 2016
Language: French
Sector: Public Administration
Issue: Economy and efficiency gains not achieved
Read More...
Year Published: 2016
Language: French
Sector: Public Administration
Issue:
Read More...
Year Published: 2016
Language: French
Sector: Public Administration
Issue: Security of information systems
Year Published: 2015
Language: French
Sector: Public Administration
Issue: The fragilities of information systems
Read More...
Year Published: 2020
Language: French
Sector: Economy
Issue: IT trajectory
Read More...
Year Published: 2019
Language: French
Sector: Public Administration
Issue: IT management - the process of computerized management of collective catering
Read More...
Year Published: 2019
Language: French
Sector: Economy
Issue: Deploy a computer schema
Read More...
Year Published: 2020
Language: French
Sector: Education
Issue: Data exploitation
Read More...
Year Published: 2020
Language: French
Sector: Transports
Issue: Information Systems
Read More...
Year Published: 2020
Language: French
Sector: Education
Issue: Digital Solutions
Read More...
Year Published: 2020
Language: French
Sector: Public Administration
Issue: Digital Infrastructures
Read More...
Year Published: 2020
Language: French
Sector: Public Administration
Issue: Data
Read More...
Year Published: 2020
Language: French
Sector: Public Administration
Issue: Digital Procedures
Read More...
Year Published: 2017
Language: French
Sector: Technologies
Issue: Digital Transformation
Read More...
Year Published: 2019
Language: French
Sector: Health
Issue: IT Staff
Read More...
Year Published: 2017
Language: French
Sector: Public Administration
Issue: The replacement of information systems
Read More...
Year Published: 2019
Language: French
Sector: Education
Issue: Digital
Read More...
Year Published: 2019
Language: French
Sector: Research
Issue: Digital
Read More...
Year Published: 2019
Language: French
Sector: Public Administration
Issue: Information Systems
Read More...
Year Published: 2018
Language: French
Sector: Public Administration
Issue: IT budgets
Read More...
Year Published: 2019
Language: French
Sector: Institution
Issue: Information System
Read More...
Year Published: 2020
Language: French
Sector: Public Administration
Issue: IT Staff
Read More...
Year Published: 2020
Language: French
Sector: Housing
Issue: Digital Transformation
Read More...
Year Published: 2020
Language: French
Sector: Public Administration
Issue: Digital Transformation
Read More...
Year Published: 2020
Language: French
Sector: Public Administration
Issue: Digital Transformation
Read More...
Year Published: 2020
Language: French
Sector: Public Health
Issue: Security of personal data
Read More...
Year Published: 2018
Language: French
Sector: Public Administration
Issue: Monitoring
Read More...
Year Published: 2018
Language: French
Sector: Agriculture
Issue: Payment chain
Read More...
Year Published: 2019
Language: French
Sector: Environment
Issue: The opening of public data
Read More...
Year Published: 2016
Language: English
Sector: Public sector - Health
Issue: IT Management, IT Applications, Information Security including Identity and Access Management, IT Operations including Risk Management - Business Impact Analysis, Risk Assessment and Business Continuity Plan and Disaster Recovery Plan
Year Published: 2015
Language: English
Sector: Social Policy - Housing
Issue: IT Management, IT Applications, Data Management, Information Security and IT Operations including Security Management, Business Continuity - Business Impact Analysis, Risk Assessment Exercise, Business Continuity and Disaster Recovery Plans
Year Published: 2014
Language: English
Sector: Public Sector - Employment
Issue: IT Management, E-Government, IT Applications, IT Operations, Information Security including Business Impact Analysis, Risk Assessment Exercise, Business Continuity and Disaster Recovery Plans, Security Awareness Training
Year Published: 2013
Language: English
Sector: Public Sector - Tourism
Issue: IT Management, IT Applications, IT Operations, Information Security including Business Impact Analysis; Risk Assessment Exercise; Business Continuity and Disaster Recovery, Security Awareness Training
Year Published: 2013
Language: English
Sector: Public Sector - Education
Issue: IT Management, IT Applications, Protection of Information Assets, Information Security, IT Operations including Access Controls, Risk Management, Business Continuity and Recovery
Year Published: 2012
Language: English
Sector: Public sector - Culture
Issue: IT Management, IT Applications, Protection of Information Assets, Information Security including Identity and Access Management, IT Operations including Access Controls, Risk Management, Business Continuity and Recovery
Year Published: 2016
Language: English
Sector: Public Accounting
Issue: Effectiveness of the IT system
Year Published: 2019
Language: Latvian
Sector: E-government
Issue: ICT governance and optimization, and ICT security CUBE analysis available
Read More...
Year Published: 2018
Language: Spanish
Sector: hydrocarbons
Issue: SCADA Systems
Read More...
Year Published: 2019
Language: Spanish
Sector: Financial system
Issue: Payment Systems
Read More...
Year Published: 2017
Language: Latvian
Sector: E-government
Issue: Data exchange between institutions and open data policy
Read More...
Year Published: 2016
Language: Latvian
Sector: Public sector - Culture
Issue: Storage of e-documents and data
Read More...
Year Published: 2015
Language: Latvian
Sector: Internal Affairs
Issue: Process of issuance and quality of bio-metric data
Read More...
Year Published: 2013
Language: Latvian
Sector: Local Government
Issue: Using of unlicensed software and computer security management
Read More...
Year Published: 2010
Language: Latvian
Sector: E-government
Issue: Project “E-government Portfolio” implementation
Read More...
Year Published: 2012
Language: 23 EU languages
Sector: EU External Action
Issue: Audit questions: (a) Is CRIS designed to effectively respond to the Commission’s needs? (b) Is the information provided by CRIS reliable? (c) Did the Commission sufficiently secure CRIS and its data?
Year Published: 2014
Language: 23 EU languages
Sector: Border Control
Issue: Audit questions: (a) Did the Commission deliver SIS II on time? (b) Did the Commission deliver SIS II in line with initial cost estimates? (c) Was there a robust business case for SIS II throughout the project which took into account major changes to the costs and expected benefits? (d) Did the Commission learn and apply lessons from its management of the SIS II development project?
Year Published: 2016
Language: 23 EU languages
Sector: Agriculture
Issue: Audit question: Is the Land Parcel Identification System (LPIS) well managed? (LPIS - IT system based on photographs of agricultural parcels used to check payments made under the Common Agricultural Policy).
Year Published: 2018
Language: 23 EU languages
Sector: Customs
Issue: Audit assessed whether the Customs 2020 programme, together with the related customs legislation, are likely to deliver the IT systems necessary for improving customs operations in the EU. Audit focused on the development of the Union components of new IT systems.
Year Published: 2019
Language: 23 EU languages
Sector: Cybersecurity
Issue: The objective was to provide an overview of the EU’s complex cybersecurity policy landscape and identify the main challenges to effective policy delivery.
Year Published: 2019
Language: 23 EU languages
Sector: Border Control
Issue: Audit questions: (a) Are the EU information systems for internal security well designed to facilitate efficient border checks? (b) Are the EU information systems for internal security providing border guards with relevant, timely and complete information during border checks?
Year Published: 2018
Language: Spanish
Sector: Public Sector - Treasury
Issue: Information quality and security for the management decision making of the primary processes
Year Published: 2018
Language: Spanish
Sector: Public Sector - Education
Issue: Information integration, quality and security
Year Published: 2018
Language: Spanish
Sector: Public Sector - Education
Issue: Strategic alignment of information technologies and continuity of services supported in information systems
Year Published: 2017
Language: Spanish
Sector: Public Sector - Migration
Issue: Information quality and security
Year Published: 2018
Language: English
Sector: Public Administration
Issue:
Year Published: 2016
Language: English
Sector: Finance
Issue: ICT System, IT controls, Validations
Read More...