INSPECTOR GENERAL’S OFFICE
The Office of Inspector General, Information Technology Audits Division, conducted an audit to determine whether the USAID effectively implemented system administrator roles to protect against loss, unauthorized access, or access to resources.
2014 · 3 pages

Abstract
The audit focused on the Agency's implementation of system administrator roles, system security plan, and system configuration, as well as the management of user rights, roles, and privileges. The audit revealed weaknesses in the Agency's implementation of system administrator roles, including the system security plan and system configuration. The system lacked a technical guide on managing user rights, roles, and privileges. As a result, the system was vulnerable to unauthorized access or loss of resources. The audit report contains five recommendations to address these weaknesses and strengthen the administration of USAID's system administrator roles. The recommendations aim to improve the system's security and ensure the effective management of user rights, roles, and privileges. The report also acknowledges management comments and correspondence, indicating that the Agency has taken action to address the identified weaknesses. The audit was conducted by the Office of Inspector General, Information Technology Audits Division, and was completed on August 5, 2014. The report was issued by the Office of Inspector General, USAID, and is available on the OIG website. The report's findings and recommendations are intended to improve the security and effectiveness of USAID's system administrator roles and system configuration. The audit's findings and recommendations are critical to ensuring the security and integrity of USAID's resources and information resources. The recommendations aim to strengthen the Agency's system administrator roles and system configuration, reducing the risk of unauthorized access or loss of resources. The report's findings and recommendations are intended to inform USAID's management and staff, as well as other stakeholders, on the importance of effective system administration and system security. The Office of Inspector General, USAID, is responsible for ensuring the effective management of USAID's resources and information resources. The OIG's Information Technology Audits Division conducts audits and evaluations to assess the effectiveness of USAID's system administration and system security. The OIG's audit reports provide critical insights into the Agency's system administration and system security, informing management and staff on areas for improvement. The USAID's system administrator roles and system configuration are critical to ensuring the security and integrity of the Agency's resources and information resources. The system administrator roles are responsible for managing user rights, roles, and privileges, as well as developing and documenting system standard operating procedures. The system configuration is responsible for ensuring the security and integrity of the system, including the management of system configurations and information security policies.
Classification

USAID DEC