NASA IT Security Posture Found to be “High Risk”

October 26, 2009

The U.S. Government Accountability Office (GAO) has issued a report this month that has painted a bleak picture of NASA’s IT security posture.

Between 2007 and 2008, the space agency (NASA) reported 1,120 security incidents that have resulted in the installation of malicious software on its systems along with unauthorized access to sensitive information.  And, this recent report continues the warning that highly sensitive personal, scientific, and other data was found to be  at an “increased risk” of unauthorized use, modification, or disclusure.

There are potential lessons to be learned in this report and it is suggested reading for members of your organization’s business continuity management team(s).  This report addresses questions of security software effectiveness, network security risks and weaknesses, information management and security management guidelines and ultimately potential ideas to increase the effectiveness of your enterprise security programs.

Click here to read this report.

Comments

• 
• 
• 
• 

• Subscribe

  • Subscribe to RSS
  • Comments

• Recent News

  • FEMA’s National Preparedness Month Stresses Importance of Family and Community Emergency Preparedness
  • Managing Workplace Violence Risk
  • Compliance Officer’s Obligation to Preserve Data Upheld by SEC Ruling
  • View the August 24th B.I.A. Webinar
  • B.I.A. Webinar: View the Slide Deck
  • PS-Prep, the Insurance Industry, and Private Sector Preparedness
  • RISK MANAGEMENT AND WORKPLACE VIOLENCE PREVENTION PROGRAMS
  • Business Impact Analysis Webinar: Methods and Techniques that Work!
  • Business Continuity and Benchmarking Professional Practices
  • Cyber Security: Internet Protocol version 6 (IPv6)

• Categories

  • Events
  • Information
    • Auditing
    • Business Continuity Info
    • IT Service Management
    • Organizational Resiliency
    • PS-Prep Program
    • Regulatory Compliance
    • Standards & Best Practices
  • Security
    • Cybersecurity
    • Environmental Security
    • Executive Protection
    • Homeland Security Dpt
    • Information Security
    • Physical Security
    • Regulatory Compliance
    • Safety
  • Tools & Resources
    • Community Projects
      • Glossary
    • FAQs
  • Uncategorized

• Archives

  • September 2010
  • August 2010
  • July 2010
  • June 2010
  • May 2010
  • April 2010
  • March 2010
  • February 2010
  • January 2010
  • December 2009
  • November 2009
  • October 2009
  • September 2009
  • August 2009

• What Others Are Reading About

  ANAB ASIS SPC.1-2009 BCM Business Continuity business continuity management Business Continuity Plan business continuity planning Business Continuity Plans business impact analysis compliance contingency planning corporate security crisis management cyber security cybersecurity data breach Department of Homeland Security DHS disaster recovery disaster recovery planning e-Discovery eDiscovery emergency response enterprise risk management FEMA Information Security information systems security NFPA 1600 organizational resilience Organizational Resiliency Physical Security preparedness privacy privacy rights Private Sector Preparedness PS-Prep PS-Prep Program readiness Regulatory Compliance resilience Resiliency risk assessment risk management Security security management Auditing (3)
  Business Continuity Info (97)
  Community Projects (2)
  Cybersecurity (28)
  Environmental Security (2)
  Events (3)
  Executive Protection (1)
  FAQs (1)
  Glossary (2)
  Homeland Security Dpt (12)
  Information (2)
  Information Security (61)
  IT Service Management (6)
  Organizational Resiliency (12)
  Physical Security (16)
  PS-Prep Program (61)
  Regulatory Compliance (16)
  Regulatory Compliance (11)
  Safety (4)
  Standards & Best Practices (9)
  Tools & Resources (4)
  Uncategorized (3)
  

  WP Cumulus Flash tag cloud by Roy Tanck and Luke Morton requires Flash Player 9 or better.