View PDF Document

Summary

In December 2015, President Obama signed the Cybersecurity Act of 2015. The act’s Section 406—Federal Computer Security—requires that by August 14, 2016 (240 days after enactment), inspector generals submit reports to Congress that contain information on the national security systems and/or Federal computer systems that provide access to personally identifiable information. To comply with this provision of the act, we are initiating this audit. Our audit objectives will be to identify DOT’s (1) access controls, and (2) other information security management practices to safeguard the information stored in DOT’s systems covered by the Cybersecurity Act of 2015.