NASA Information Security Is Still Broken
Source: Keith Cowing
Follow-up Evaluation of NASA's Implementation of Executive Order 13526, Classified National Security Information, NASA OIG
"Although NASA has taken steps to implement our prior recommendations, we continued to identify inconsistencies in the Agency's application of CNSI policies and procedures that led to improper marking of classified documents. This occurred because of insufficient identification and training of classifiers. Further, implementation of the Agency's self-inspection program was not fully effective because NASA Centers did not consistently review documents to verify the accuracy of classified markings. Improved identification and training of classification officials and effective self-inspections would help ensure classified information at NASA is managed in accordance with Federal requirements."
Information Security: NASA Needs to Improve Controls over Selected High-Impact Systems. GAO-16-688SU, September 23, GAO (Restricted report)
| }
|