<mods xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.loc.gov/mods/v3" version="3.3" xsi:schemaLocation="http://www.loc.gov/mods/v3 http://www.loc.gov/standards/mods/v3/mods-3-3.xsd" ID="P0b002ee18038ac21">
<name type="corporate">
 <namePart>United States Government Publishing Office</namePart>
 <role>
  <roleTerm authority="marcrelator" type="text">publisher</roleTerm>
  <roleTerm authority="marcrelator" type="code">pbl</roleTerm>
</role>
 <role>
  <roleTerm authority="marcrelator" type="text">distributor</roleTerm>
  <roleTerm authority="marcrelator" type="code">dst</roleTerm>
</role>
</name>
<name type="corporate">
 <namePart>United States</namePart>
 <namePart>Government Accountability Office</namePart>
 <namePart>Accounting and Information Management Division</namePart>
 <role>
  <roleTerm authority="marcrelator" type="text">author</roleTerm>
  <roleTerm authority="marcrelator" type="code">aut</roleTerm>
</role>
 <description>Government Organization</description>
</name>
<typeOfResource>text</typeOfResource>
<genre authority="marcgt">government publication</genre>
<language>
 <languageTerm type="code" authority="iso639-2b">eng</languageTerm>
</language>
<extension>
 <collectionCode>GAOREPORTS</collectionCode>
 <category>Legislative Agency Publications</category>
 <waisDatabaseName>gao</waisDatabaseName>
 <branch>legislative</branch>
 <dateIngested>2010-08-12</dateIngested>
</extension>
<originInfo>
 <publisher>U.S. Government Printing Office</publisher>
 <dateIssued encoding="w3cdtf">1999-10-04</dateIssued>
 <issuance>monographic</issuance>
</originInfo>
<physicalDescription>
 <note type="source content type">deposited</note>
 <digitalOrigin>born digital</digitalOrigin>
 <extent>33 p.</extent>
</physicalDescription>
<classification authority="sudocs">GA 1.13:AIMD-00-5</classification>
<identifier type="uri">https://www.govinfo.gov/app/details/GAOREPORTS-AIMD-00-5</identifier>
<identifier type="local">P0b002ee18038ac21</identifier>
<identifier type="former package identifier">f:ai00005</identifier>
<recordInfo>
 <recordContentSource authority="marcorg">DGPO</recordContentSource>
 <recordCreationDate encoding="w3cdtf">2010-08-12</recordCreationDate>
 <recordChangeDate encoding="w3cdtf">2011-03-23</recordChangeDate>
 <recordIdentifier source="DGPO">GAOREPORTS-AIMD-00-5</recordIdentifier>
 <recordOrigin>machine generated</recordOrigin>
 <languageOfCataloging>
  <languageTerm type="code" authority="iso639-2b">eng</languageTerm>
</languageOfCataloging>
</recordInfo>
<accessCondition type="GPO scope determination">fdlp</accessCondition>
<extension>
 <docClass>REPORT</docClass>
 <accessId>GAOREPORTS-AIMD-00-5</accessId>
 <reportNumber>AIMD-00-5</reportNumber>
 <subject>Computer security</subject>
 <subject>Financial statement audits</subject>
 <subject>Financial management systems</subject>
 <subject>Information resources management</subject>
 <subject>Internal controls</subject>
 <subject>Federal agency accounting systems</subject>
 <subject>Confidential communication</subject>
 <identifier>VA Integrated Funds Distribution, Control Point Activity,</identifier>
 <identifier>Accounting &amp; Procurement System</identifier>
 <identifier>VA Awards Data Entry System</identifier>
 <type>Letter Report</type>
 <seriesAbbrev>AIMD</seriesAbbrev>
 <accountNo>I00005</accountNo>
 <law congress="104" isPrivate="false" number="106"></law>
 <USCode title="31">
                      <section number="720"></section>
                </USCode>
 <statuteAtLarge volume="110">
                      <pages pages="684"></pages>
                </statuteAtLarge>
</extension>
<titleInfo>
 <title>Information Systems: The Status of Computer Security at</title>
</titleInfo>
<abstract>Pursuant to a legislative requirement, GAO reported on the status of
computer security throughout the Department of Veterans Affairs (VA).&lt;p/&gt;GAO noted that: (1) in September 1998, GAO reported that VA&apos;s
information system controls placed critical department operations, such
as financial management, health care delivery, benefit payments, and
other operations, at risk of misuse and disruption; (2) since then, VA
organizations have taken actions to correct some of the weaknesses GAO
reported and independently initiated actions to improve certain aspects
of their computer security management programs; (3) progress in
correcting the weaknesses GAO identified in its September 1998 report
has been inconsistent across VA organizations, and efforts to improve
local computer security management programs were not part of a
coordinated, departmentwide effort; (4) in connection with VA&apos;s fiscal
year 1998 consolidated financial statement audit, GAO and VA&apos;s Office of
Inspector General continued to find serious problems related to the
department&apos;s control and oversight of access to its information systems;
(5) these weaknesses placed sensitive information, including financial
data and sensitive veteran medical and benefit information at increased
risk of inadvertent or deliberate misuse, fraudulent use, improper
disclosure, or destruction, possibly occurring without detection; (6) VA
has recognized the significance of these problems and reported
information system security as a material weakness in its Federal
Managers&apos; Financial Integrity Act report for 1998; (7) in September
1998, GAO also reported that the primary reason for VA&apos;s continuing
information system control problems was that the department did not have
a comprehensive computer security planning and management program; (8)
to strengthen its departmentwide computer security management program,
VA established a centrally managed security group in February 1999 and
an Information Security Working Group, which includes representatives
from the central security group and all VA line and staff organization
security groups, in March 1999; (9) the Information Security Working
Group developed a departmentwide plan to improve information system
security throughout VA and establish a departmentwide computer security
planning and management program; (10) because this multi-year plan is at
an early stage of development, its ultimate effectiveness cannot yet be
assessed; and (11) VA&apos;s success in improving information security is
largely dependent on the level of commitment to this throughout VA and
adequate resources being effectively dedicated to implement its
departmentwide plan.</abstract>
<location>
 <url displayLabel="HTML rendition" access="raw object">https://www.govinfo.gov/content/pkg/GAOREPORTS-AIMD-00-5/html/GAOREPORTS-AIMD-00-5.htm</url>
 <url displayLabel="PDF rendition" access="raw object">https://www.govinfo.gov/content/pkg/GAOREPORTS-AIMD-00-5/pdf/GAOREPORTS-AIMD-00-5.pdf</url>
</location>
<identifier type="preferred citation">GAO/AIMD-00-5</identifier>
<location>
 <url displayLabel="Content Detail" access="object in context">https://www.govinfo.gov/app/details/GAOREPORTS-AIMD-00-5</url>
</location>
<note>Letter Report</note>
<extension>
 <searchTitle>GAO/AIMD-00-5; Information Systems: The Status of Computer Security at;
            </searchTitle>
</extension>
<subject>
 <topic>Computer security</topic>
 <topic>Financial statement audits</topic>
 <topic>Financial management systems</topic>
 <topic>Information resources management</topic>
 <topic>Internal controls</topic>
 <topic>Federal agency accounting systems</topic>
 <topic>Confidential communication</topic>
 <topic>VA Integrated Funds Distribution, Control Point Activity,</topic>
 <topic>Accounting &amp; Procurement System</topic>
 <topic>VA Awards Data Entry System</topic>
</subject>
<relatedItem type="isReferencedBy">
 <titleInfo>
  <title>United States Code</title>
  <partNumber>Title 31 Section 720</partNumber>
</titleInfo>
 <identifier type="USC citation">31 U.S.C. 720</identifier>
</relatedItem>
<relatedItem type="isReferencedBy">
 <titleInfo>
  <title>United States Statutes at Large</title>
  <partNumber>Volume 110 Page 684</partNumber>
</titleInfo>
 <identifier type="Statute citation">110 Stat. 684</identifier>
</relatedItem>
<relatedItem type="isReferencedBy">
 <titleInfo>
  <title>United States Public Law 106 (104th Congress)</title>
</titleInfo>
 <identifier type="public law citation">Public Law 104-106</identifier>
</relatedItem>
</mods>