INFORMATION TECHNOLOGY: Improving Security of Publicly Accessible Websites Could Help Limit Cyber Risk

October 23, 2017 | Audit Reports

The Office of Inspector General (OIG) conducted an audit of Amtrak’s (the company) website security program. Our audit objective was to assess whether current controls provide reasonable assurance that the company’s publicly accessible websites are secure.

The company uses numerous information technology (IT) applications accessible to the public via the Internet. Given the company’s reliance on publicly accessible websites, we compared its practices for IT website security to leading practices from the private and public sectors, including those of the National Institute of Standards and Technology.

Tracking Number

OIG-A-2018-001

Report

Filter Audit Reports

Engagement Memos

Audit Reports

Other Audit Correspondence

Select Year

INFORMATION TECHNOLOGY: Improving Security of Publicly Accessible Websites Could Help Limit Cyber Risk

Featured Reports

CAR INSPECTOR LOSES SENIORITY, IS REMOVED FROM SERVICE FOR WORKING OUTSIDE JOBS ON MEDICAL LEAVE

MANAGER OF CLINICAL LABORATORY SENTENCED FOR HEALTH CARE FRAUD

FIVE EMPLOYEES TERMINATED OR RESIGNED WHILE UNDER INVESTIGATION AND SIX OTHERS REPRIMANDED FOLLOWING INVESTIGATION INTO TIME AND ATTENDANCE ABUSE

Two sentenced for rural hospital billing scheme investigated by Amtrak OIG