The Justice Department Office of the Inspector General (OIG) found that DoJ’s Justice Management Division’s (JMD’s) Justice Security Tracking and Adjudication Record System (JSTARS) was overall compliant with the Federal Information Security Modernization Act (FISMA) in an audit summary released yesterday.
The audit, which was conducted by KPMG, reviewed the security program and practices of JSTARS–which automates the tracking of DoJ’s personnel security investigation activities. Although OIG concluded that the program was overall secure, one control area needed to be strengthened.
“The audit identified weaknesses in one of the six control areas that need to be strengthened to ensure that JMD’s JSTARS and data are adequately protected,” the summary said.
To address the weaker control area, the audit made three recommendations to better secure JSTARS. Although OIG’s public report noted the identified weakness and recommendations were confidential, it stated that JMD management agreed with the identified weaknesses and will work to strengthen the program.