Audits

We issued our final report on NTSB’s Information Security Program required by Federal Information Security Management Act of 2002. We found that NTSB needs to implement an agency-wide information security program and strengthen network security to prevent unauthorized access by insiders. We recommend that NTSB designate a Chief Information Officer, implement an information security management program and enhance NTSB network security.