Home / Cybersecurity / GAO Cites Gaps in NASA’s IT Mgmt Practices for Cybersecurity, Workforce Planning

GAO Cites Gaps in NASA’s IT Mgmt Practices for Cybersecurity, Workforce Planning

The Government Accountability Office has found deficiencies in NASA’s implementation of information technology management practices.

GAO said in a report published Tuesday those deficiencies were observed in the space agency’s practices for cybersecurity, governance, workforce and strategic planning.

NASA falls short of implementing an effective cybersecurity risk management process that includes the establishment of a data security program plan; cyber risk management strategy; executive oversight of risks; and related policies to safeguard information systems, according to the report.

“Until NASA leadership fully addresses these leading practices, its ability to ensure effective management of IT across the agency and manage cybersecurity risks will remain limited,” GAO wrote.

The congressional watchdog found that NASA does not evaluate staffing and competency requirements and has failed to document processes related to IT strategic planning in agreement to leading practices.

Check Also

VA Incorporating Customer Experience Principles Into CFR’s Core Values Section

The Department of Veterans Affairs is set to add a set of customer experience principles to the core values and characteristics section of its Code of Federal Regulations, Nextgov reported Friday. “Maintaining a sustained organizational commitment to, and institutionalized focus on, the voice of the customer is a critical component of modernizing VA to meet the needs and expectations of veterans, their families, caregivers and survivors,” according to the final rule scheduled for publication on Federal Register Monday.

Leave a Reply

Your email address will not be published. Required fields are marked *