Search

-A A +A
skip-to-content
DOT Web Systems Security
We released our report on the security of the Department's web systems in response to the statutory requirements of the Government Information Security Reform Act.
Library Item
Date: 09.30.2002
PDF icon 2002websec.pdf
Cybersecurity Planning Weaknesses May Hinder the Efficient Use of Future Resources
In its fiscal year 2011 budget request, DOT’s Office of the Chief Information Officer (OCIO) requested $30 million to close the Department’s most serious cybersecurity gaps.
Library Item
Date: 08.07.2017
PDF icon DOT Cybersecurity Funding Final Report^8-7-17.pdf
Quality Control Review of Controls over DOT's Protection of Privacy Information
We conducted a quality control review of an audit, performed by CliftonLarsonAllen LLP, of the DOT’s practices for the protection of personally identifiable information (PII).
Library Item
Date: 06.05.2014
PDF icon QCR of DOT Privacy Protections.pdf
Improvements Increase DOT’s Compliance With the Reducing Over-Classification Act
Information security is a top priority for the Department of Transportation (DOT) and other Federal agencies and requires accurate and accountable application of classification standards.
Library Item
Date: 11.07.2016
PDF icon ROCA Final Report.pdf
DOT Has Not Met Federal Targets for Implementing Components of Its Information Security Continuous Monitoring Program
What We Looked At
Library Item
Date: 12.04.2018
PDF icon DOT Information Security Continuous Monitoring Program Final Report^12-4-18.pdf
Quality Control Review of Controls Over the Enterprise Services Center
On October 1, 2009, we issued our final report on the general, application, and operational controls over the DOT Enterprise Services Center. OIG hired a CPA firm to perform this review in accordance with the Statement of Auditing Standard No.
Library Item
Date: 10.01.2009
PDF icon FY2009_SAS_70final_10-01-2009l_(5).pdf
DOT Lacks an Effective Process for Its Transition to Cloud Computing
DOT has taken steps to transition to cloud computing, such as establishing a multi-modal Cloud Working Group, but it has not taken other actions needed to ensure an effective transition.
Library Item
Date: 06.16.2015
PDF icon DOT Cloud Computing Final Report - 6-16-15.pdf
DOT Does Not Fully Comply With Requirements of the Reducing Over-Classification Act
On September 19, 2013, we issued our report entitled DOT Not Fully Complying with Requirements of the Reducing Over-Classification Act.  Our objectives were to (1) determine whet
Library Item
Date: 09.23.2013
PDF icon Reducing Overclassification Act compliance report.pdf
The Volpe Center’s Information Technology Infrastructure Is at Risk for Compromise
This report presents the results of our audit of the security controls for the John A. Volpe Center’s (Volpe) information technology infrastructure.
Library Item
Date: 03.22.2016
PDF icon Volpe Center IT Security Controls_Final Report^3-22-16.pdf
Quality Control Review on the Independent Auditor’s Report on the Assessment of DOT’s Information Security System Program and Practices
What We Looked At
Library Item
Date: 09.28.2022
PDF icon QCR of FY22 DOT FISMA_9.28.22.pdf

Pages