www.socialsecurity.gov| Skip
to content Social Security Online |
Office of the Inspector General | |
| www.socialsecurity.gov |
|
OIG Home
Español |
This is an archival or historical document and may not reflect current policies or procedures | |
| ||
|
Report
Summary
Social Security Administration Office of the Inspector General Management Advisory Report: The Social Security Administration's Oversight of the Disability Determinations Services' Systems Security (Limited Distribution) (A-14-02-22026) Our objective was to provide information regarding the Social Security Administration (SSA) oversight of Disability Determination Services' (DDS) systems security, including monitoring of logical access controls and the suitability of its users. We found that there were not sufficient compensating controls to adequately monitor DDS employee access to SSA systems in accordance with laws, regulations, and best practices. SSA generally agreed with our recommendations. SSA is improving its security policies and monitoring procedures for the DDS environment through the use of new tools and software. The Agency is working with the DDSs to ensure that they review and certify the appropriateness of each DDS employee's level of systems access. The internal SSA Intrusion Detection System team continues to develop new ways to detect incidents and enhance internal control capabilities, including detection and controls relating to DDS systems access. The Agency is working with the DDSs to ensure that violations are reported and acted on in a prompt manner. This report contains information that is sensitive and confidential. For security reasons, distribution of this report was limited to those with a need to know. |
 |
Privacy Policy | Website Policies & Other Important Information | Site Map |