DoD’s IG said in a Sept. 25 report it identified vulnerabilities in the areas of contingency planning, access and identity management and risk management based on 20 unclassified audit reports and a testimony that DoD and the Government Accountability Office issued between Aug. 1, 2014 and July 31, 2015.
As of July 31, DoD management addressed 93 out of 229 unresolved recommendations for cyber threat mitigation that were identified through the audit reports.
The Pentagon has yet to resolve 136 cyber issues, according to the report.
DoD’s IG said it released the summary report in compliance with the requirements of the Federal Information Security Management Act.