Home / News / Report: Commerce Dept. Cybersecurity is Inadequate

Report: Commerce Dept. Cybersecurity is Inadequate

Commerce Dept. CIO Simon Szykman; Photo: ocio.os.doc.gov

Intellectual property crime in the cyber age has long been a concern, with one notable estimate putting the loss by American business at $1 trillion.

However, a new report by the Commerce Department’s inspector general suggests the agency tasked with promoting economic growth needs to secure its own networks as well.

According to the Commerce Department’s IG, the agency’s cybersecurity is “not adequate.”

The report identified four areas of concern:

1)      The risk of a serious breach because of serious vulnerabilities is higher than once thought.

2)      The process for reporting and tracking security weaknesses is deficient.

3)      Inadequate contingency planning threatens the ability to restore data after a disruption.

4)      “Persistent deficiencies” reduce the overall level of information assurance.

The IG recommends the agency revise its current cybersecurity practices by “providing specific implementation guidance that will ensure more effective and consistent practices across” the Commerce Deptartment.

The report also advises further action from management so that the deficiencies can be “rectified.”

The Patent and Trademark Office is particularly vulnerable, FierceGovernmentIT reports. The report found 30.5 vulnerabilities per computer even though previous internal audits found only 1.7 vulnerabilities per computer.

There has been little official response to the report, according to FierceGovernmentIT. The IG’s report says Commerce’s Chief Information Officer Simon Szykman “concurred with our findings and recommendations.”

Check Also

DoD: China Acquiring Tech for Military Modernization Through Legal and Illicit Means

The Defense Department said in a recent report that the Chinese government has been pursuing its military modernization goals through legal and illicit means, procuring foreign technology through legal means but also engaging in clandestine operations to gain access to regulated or export-restricted material, the DoD stated in its report to Congress.

Leave a Reply

Your email address will not be published. Required fields are marked *