Information security : sustained progress needed to strengthen controls at the Securities and Exchange Commission : report to the Chairman, Securities and Exchange Commission / U.S. Govt. Accountability Office.

Format:

Book

Author/Creator:

United States. Government Accountability Office, author, issuing body.

Language:

English

Subjects (All):

Computer security--Government policy--United States.

Computer security.

Data protection--Government policy.

Data protection.

Data protection--Government policy--United States.

Physical Description:

1 online resource (i, 21 pages)

Place of Publication:

Washington, D.C. : U.S. Government Accountability Office, 2007.

Summary:

In carrying out its mission to ensure that securities markets are fair, orderly, and efficiently maintained, the Securities and Exchange Commission (SEC) relies extensively on computerized systems. Integrating effective information security controls into a layered control strategy is essential to ensure that SEC's financial and sensitive information is protected from inadvertent or deliberate misuse, disclosure, or destruction. As part of its audit of SEC's financial statements, GAO assessed (1) SEC's actions to correct previously reported information security weaknesses and (2) the effectiveness of controls for ensuring the confidentiality, integrity, and availability of SEC's information systems and information. To do this, GAO examined security policies and artifacts, interviewed pertinent officials, and conducted tests and observations of controls in operation.

Notes:

Description based on publisher supplied metadata and other sources.