Review of the Department of Justice’s Reporting Procedures for Loss of Sensitive Electronic Information
Evaluation and Inspections Report I-2007-005
June 2007
Office of the Inspector General
In a memorandum dated May 25, 2007, the USMS responded to the OIG draft report. The USMS concurred with the eight recommendations in the report and provided a proposed action plan for those recommendations that required component versus Department action. The USMS stated that it would take the following actions by the noted dates for Recommendations 1, 2, and 8:
Recommendation 1 – The USMS will update its information technology security policy no later than June 30, 2007, to include the procedures to be followed for reporting computer security incidents after hours.
Recommendation 2 – Because nothing in the report indicated that there was a problem with USMS reporting procedures for classified information, the USMS stated it has no action planned.
Recommendation 8 – The USMS will ensure that by no later than June 30, 2007, the procedures issued by various organizations within the agency do not have conflicting or inconsistent chain-of-command reporting procedures and that staff titles and internal department designations are correct.
While we appreciate the USMS response to the OIG recommendations, the Office of the CIO is coordinating the resolution process on behalf of the components for all recommendations. Therefore, we forwarded the USMS’s response memorandum to the Office of the CIO.
« Previous | Table of Contents | Next » |