An Inspector General’s report has identified weaknesses with the Civil Division’s Mega Network Operations Center (MEGANOC) system information security program.
An audit was performed by KPMG to identify whether the system’s information security program and practices were consistent with the requirements of the Federal Information Security Modernization Act (FISMA), and to identify vulnerabilities, and evaluate selected system security controls.
FISMA assigns responsibilities to federal agencies, the National Institute of Standards and Technology (NIST), and OMB to strengthen federal information system security.
This audit provides four recommendations for improving the Civil Division’s MEGANOC system, but these have not been publicly disclosed as the OIG is only releasing a summary of the report for security reasons.
To ensure the Civil Division was immediately aware of the deficiencies identified during this audit, the auditors presented the findings to Civil Division management prior to the issuance of the report. Civil Division management concurred with the identified weaknesses.