View PDF Document

Summary

The Office of Inspector General is initiating an audit of the Department of Transportation’s (DOT) practices for handling cybersecurity incidents. Security incidents—from viruses to attempted network intrusions—can result in system malfunctions, and the loss, theft or alteration of data. Our audit objectives are to determine whether DOT has (1) effective monitoring in place for all its networks and information systems; (2) an effective process to detect incidents affecting Agency systems; and (3) established practices that reasonably contain, eradicate, and report incidents.