2001 - Audit Report

U.S. Department of Labor
Office of Inspector General
Office of Audit

Department of Labor is Refocusing Efforts to Improve Physical Security of its Minimum Essential Infrastructure

Information obtained from the Internet may not be in the same format as a hard copy obtained from the Office. Depending on the requester, the quantity of information provided may also vary. In order to appeal any deleted information received via the Internet, you must make a formal written request for the same material. Further, some of the audit reports issued prior to FY 1998 may no longer be available. They may have been destroyed in accordance with our records retnetion schedule. However, any request for audit reports or other audit materials should be sent to the OIG, Disclosure Officer, Room S1303, 200 Constitution Avenue, N.W., Washington, D. C. 20210.

Unless otherwise stated, the audit reports provided on this web page reflect the findings of the OIG at the time that the audit report was issued. The auditee may have more current information available as a result of audit resolution activities.

The OIG is using Adobe Acrobat 4.0 to prepare its audit reports for the internet. If you experience problems accessing the PDF files, you may want to download the latest version of the Adobe Acrobat Reader by clicking on the link provided.

[ Link to Acrobat 4.0 Reader ]

Presidential Decision Directive (PDD) 63 - DOL Required to Protect its Infrastructure

PDD 63 requires a national effort to assure the security of the Nation's critical infrastructures. These critical infrastructures are those physical and cyber-based systems which are essential to the minimum operations of the economy and government, and include telecommunications, banking and finance, energy, transportation, and government services. In addition to requirements for state and local governments and private sector partners, the May 1998 PDD requires that by 2003 the Federal Government shall have achieved the ability to protect its critical infrastructures from intentional acts that would significantly diminish its abilities to perform essential national security missions and ensure the general public health and safety.

As part of an effort by the President's Council on Integrity and Efficiency (PCIE) to determine the extent government agencies have been protecting their critical infrastructures, the OIG audited the Department's planning and assessment activities for protecting its physical (non-cyber-based) critical infrastructures. More specifically, PCIE guidance called for the OIG to review the adequacy of the Department's (a) plans for protecting its physical infrastructures, (b) asset identification efforts, and (c) initial vulnerability assessments.

We found the Department's efforts to protect its minimum essential infrastructure was outdated and limited in focus. For example, its 1999 Critical Infrastructure Protection Plan (CIPP), which is required by PDD 63, was not kept current with the inventory of critical cyber systems and related physical facilities. Additionally, the Department relied on assessments and/or surveys conducted by other Federal Government interests such as the General Services Administration.

The Department agreed with the findings and recommendations of the draft and final reports, and stated it recently has made solid progress in protecting the Department's critical infrastructure. For example, it has drafted an updated CIPP and established additional milestones covering a period of August 2001 to July 2003 to improve its overall protection of the Department's critical infrastructure. The OIG feels that the Department's proactive approach will lead to its meeting the requirements of PDD 63.

The OIG plans to participate in further PCIE efforts to protect the infrastructure of the Federal Government. (Audit Report No. 23-01-002-07-711; issued July 20, 2001)

[ Get Complete Report PDF ]

REPORTS BY FISCAL YEAR

[ 2001 Reports]

[ 2000 Reports ]

[ 1999 Reports ]

[ 1998 Reports ]

[ Prior to 1998 ]

GO TO --

[ Audit Reports ]

[ FOIA ]

[ Semiannual Reports ]

[ Single Audit Information ]