Bureau of the Public Debt: Areas for Improvement in Computer Controls
AIMD-99-242
Published: Aug 06, 1999. Publicly Released: Aug 06, 1999.
Skip to Highlights
Highlights
Pursuant to a legislative requirement, GAO reviewed the general and application controls that support key automated financial systems maintained and operated by the Bureau of Public Debt (BPD). GAO also followed up on the corrective actions BPD took in response to GAO's previous recommendations on improving BPD's financial system controls.
Recommendations
Recommendations for Executive Action
Agency Affected Sort ascending | Recommendation | Status |
---|---|---|
Bureau of the Public Debt | The Commissioner of BPD should work with the Federal Reserve Banks (FRB) to implement corrective actions to resolve the computer control vulnerabilities related to BPD systems supported by FRBs that GAO identified and communicated to the FRBs during its testing. |
Please call202/512-6100 for additional information.
|
Bureau of the Public Debt | The Commissioner of the Bureau of the Public Debt should take specific actions to correct each of the individual vulnerabilities that were identified during GAO's testing and summarized in the "Limited Official Use" report. |
During GAO's fiscal year 1999 testing of the effectiveness of BPD's general and application controls, GAO followed up on the status of the BPD's corrective actions to address vulnerabilities identified in GAO's audits for fiscal years 1998 and 1997. GAO found that BPD had corrected or mitigated the risks associated with 5 of the 17 vulnerabilities that were identified in this report. In commenting on a draft of the report for fiscal year 1999, BPD officials stated that it agreed with GAO's findings and that in most cases, it had subsequently corrected or was in the process of correcting vulnerabilities that GAO identified. GAO is closing this recommendation because the remaining outstanding corrective actions to correct vulnerabilities identified in this report will be included in its report on fiscal year 1999 testing results that will be issued in June 2000. GAO will follow up on these matters during its ongoing audit of the federal government's fiscal year 2000 financial statements.
|
Full Report
Office of Public Affairs
Topics
Auditing proceduresAuditing standardsAuthorizationComputer resourcesComputer securityData destructionData integrityFinancial management systemsFinancial statement auditsInternal controlsReporting requirementsComputer resources management