The Department of Justice’s Victim Notification System

Audit Report 08-04
January 2008
Office of the Inspector General


Table of Contents*

EXECUTIVE SUMMARY

INTRODUCTION

FINDINGS AND RECOMMENDATIONS

  1. EOUSA MANAGEMENT OF THE VNS

    The VNS Contract
    Accuracy of VNS Information
    The Future of the VNS
    Conclusion
    Recommendations

  2. THE VNS’s EFFECTIVENESS FOR VICTIMS

    Background
    VNS Active Victim User Satisfaction
    Victims No Longer Active in the VNS
    Conclusion
    Recommendations

  3. REVIEW OF VNS INFORMATION SECURITY

    Background
    Objectives, Scope, and Methodology of Review
    Overview of Information Security Controls Review Results
    Conclusion
    Recommendations

STATEMENT ON INTERNAL CONTROLS

STATEMENT ON COMPLIANCE WITH LAWS AND REGULATIONS

APPENDICES:

  1. OBJECTIVES, SCOPE, AND METHODOLOGY
  2. LAWS, REGULATIONS, AND MANDATES ENACTED FOR VICTIMS OF CRIME
  3. FUNDING THE VNS
  4. TYPES OF NOTIFICATIONS
  5. OFFICE OF THE INSPECTOR GENERAL OPT-IN SURVEY
  6. OFFICE OF THE INSPECTOR GENERAL OPT-OUT SURVEY
  7. OPT-IN SURVEY SCOPE, METHODOLOGY, AND RESPONSE REVIEW
  8. OPT-OUT SURVEY SCOPE AND METHODOLOGY
  9. OPT-IN SURVEY QUESTION 41
  10. THE VICTIM NOTIFICATION SYSTEM’S VULNERABILITY ASSESSMENT RESULTS
  11. THE VICTIM INTERNET SYSTEM’S WEB APPLICATION TESTING RESULTS
  12. EXECUTIVE OFFICE FOR UNITED STATES ATTORNEYS RESPONSE
  13. OFFICE OF THE INSPECTOR GENERAL ANALYSIS AND SUMMARY OF ACTIONS NECESSARY TO CLOSE THE REPORT



    * The full version of this report includes information that EOUSA considered to be sensitive, and therefore could not be publicly released. To create this public version of the report, the OIG redacted (deleted) two appendices that were considered sensitive by EOUSA, and we indicated where those redactions were made.



Return to OIG Home Page