The IT Law Wiki
Register
Advertisement

Citation[]

Government Accountability Office, Information Security: Securities and Exchange Commission Needs to Consistently Implement Effective Controls (GAO-09-203) (Mar. 16, 2009) (full-text).

Overview[]

In carrying out its mission to ensure that securities markets are fair, orderly, and efficiently maintained, the Securities and Exchange Commission (SEC) relies extensively on computerized systems. Effective information security controls are essential to ensure that SEC’s financial and sensitive information is protected from inadvertent or deliberate misuse, disclosure, or destruction.

As part of its audit of SEC’s financial statements, GAO assessed (1) the status of SEC’s actions to correct previously reported information security weaknesses and (2) the effectiveness of SEC’s controls for ensuring the confidentiality, integrity, and availability of its information systems and information.

Advertisement