FY 2012 Office of Inspector General FISMA Audit of GSAs Information Technology Security Program, Report Number A120125/O/F/F12005
September 28, 2012. “We identified the following during our audit:
- Finding 1 Systems faced increased threats because security patching for high-risk vulnerabilities were not performed timely.
- Finding 2 For newly deployed systems, PBS lacks procedures to ensure that system officials will be able to recover data and restore the system in the event of a contingency.
- Finding 3 The Office of the Chief Information Officer (OCIO) lacks comprehensive guidance for the secure development of mobile applications to mitigate mobile threats.”