IG: DHS intel systems lack information security controls

The Homeland Security Department cannot yet guarantee that its top-secret intelligence systems are out of reach from hackers, according to a new report from the department's inspector general, Richard Skinner.

"DHS has not implemented an information security program for its intelligence systems," the report states. A declassified summary of the report is posted online.

Based on a review of the department's classified intelligence IT systems conducted from May to September 2005, the IG expressed major concern with the management structure overseeing its intelligence systems as they relate to inventory, certification and accreditation, incident detection and response and information security training and awareness.

The review also focused on the department's compliance with the Federal Information Security Management Act of 2002.

DHS officials agreed with the recommendations and have begun taking action to address the issues, the report said.