Information Technology
Wen Song, Director
NASA information technology (IT) systems and networks control spacecraft, collect and process scientific data, and enable NASA personnel to collaborate with their colleagues and the public around the world. Over the past decade, NASA has become dependent on computerized information systems to carry out its daily operations and to process, maintain, and report essential information. The Information Technology Directorate conducts audits that help NASA ensure that its critical IT infrastructure is managed effectively. Below you will find links to audit reports produced by this Directorate over the last 5 years.
- October 10, 2012
Federal Information Security Management Act: Fiscal Year 2012 Evaluation (IG-13-001)
- August 8, 2012
Review of NASA's Computer Security Incident Detection and Handling Capability (IG-12-017)
- January 25, 2012
Letter to Congress - Review of NASA's Compliance with Federal Export Control Laws
- December 5, 2011
NASA Faces Significant Challenges in Transitioning to a Continuous Monitoring Approach for Its Information Technology Systems (IG-12-006)
- October 17, 2011
Annual Report, "Federal Information Security Management Act: Fiscal Year 2011 Evaluation" (IG-12-002)
- March 28, 2011
Inadequate Security Practices Expose Key NASA Network to Cyber Attack (IG-11-017)
- November 10, 2010
Annual Report, "Federal Information Security Management Act: Fiscal Year 2010 Report from the Office of Inspector General" (IG-11-005)
- September 16, 2010
Review of NASA's Management and Oversight of Its Information Technology Security Program (IG-10-024)
- September 14, 2010
Audit of NASA's Efforts to Continuously Monitor Critical Information Technology Security Controls (IG-10-019)
- September 9, 2010
Status of NASA's Transition to Internet Protocol Version 6 (IPv6) (IG-10-022)
- August 5, 2010
Audit of Cybersecurity Oversight of [a NASA] System (IG-10-018-R)
- May 13, 2010
Audit Report, "Review of the Information Technology Security of [a NASA Computer Network]" (IG-10-013)
Addendum: July 1, 2010
- November 10, 2009
Annual Report, "Federal Information Security Management Act: Fiscal Year 2009 Report from the Office of Inspector General" (IG-10-001)
- August 28, 2009
Final Memorandum on the Audit of the Reporting of NASA’s National Security Systems (IG-09-024)
- April 27, 2009
NASA’s Processes for Providing Personal Identity Verification (PIV) Cards Were Not Completely Effective in Meeting Federal Requirements (IG-09-015)
Addendum: 06/04/09 Addendum to Final Report, "NASA's Processes for Providing Personal Identity Verification (PIV) Cards Were Not Completely Effective in Meeting Federal Requirements
- November 6, 2008
Final Memorandum on Review of NASA’s Consolidation of Information Technology Purchases under the Outsourcing Desktop Initiative (IG-09-001-R)
- September 30, 2008
Annual Report, "Federal Information Security Management Act: Fiscal Year 2008 Report from the Office of Inspector General" (IG-08-031)
- February 28, 2008
Final Memorandum on Audit of Retention of NASA"s Official Electronic Mail (IG-08-010)
- January 30, 2008
Final Memorandum, "Review of NASA's Budget Year 2008 Capital Asset Plan and Business Case Exhibit 300) Submissions" (IG-08-003)
- September 28, 2007
Annual Report, "Federal Information Security Management Act: Fiscal Year 2007 Report from the Office of Inspector General" (IG-07-034)
- September 26, 2007
Final Audit Report, "Assessment of NASA’s Certification and Accreditation Process" (IG-07-035)
- September 6, 2007
Final Audit Report, "NASA’s Reporting of Performance Measure Data for the Federal Information Security Management Act (FISMA) Needed Improvement at Four Centers and NASA Headquarters" (IG-07-023)
- August 28, 2007
Final Audit Report, "NASA's Implementation of the Privacy Provisions of the Electronic Government Act" (IG-07-024)
- June, 19, 2007
Final Audit Report, "Controls over the Detection, Response, and Reporting of Network Security Incidents Needed Improvement at the Four NASA Centers Reviewed" (IG-07-014)
- November 20, 2006
NASA Implemented the Project Management Information Improvement (PMI2) Initiative but Crosswalk and Training Need to Be Completed (IG-07-002)