Trade Law Daily is a Warren News publication.

A GAO report released Wednesday said the FTC...

A GAO report released Wednesday said the FTC “has complied with all” information security requirements it examined, said a response the FTC sent the GAO (http://1.usa.gov/1mqUq5U). The FTC was one of six federal agencies whose information security practices GAO investigated,…

Sign up for a free preview to unlock the rest of this article

Timely, relevant coverage of court proceedings and agency rulings involving tariffs, classification, valuation, origin and antidumping and countervailing duties. Each day, Trade Law Daily subscribers receive a daily headline email, in-depth PDF edition and access to all relevant documents via our trade law source document library and website.

including a review of the agencies’ compliance with the Privacy Act, the E-Government Act and the Federal Information Security Management Act. Because of the sensitive nature of information protected by federal agency security measures, the report discussed the agencies only generally. The FTC’s response, however, provides more insight. “While the GAO found that the FTC has written policies in place for the required elements of its information security program, it noted several areas where we could improve the documentation of our procedures,” said the response, which is an appendix issued with the GAO report, noting the FTC will complete all improvements by the end of June. “For example, although we continually conduct risk assessments -- both formal and informal -- on our systems, by the end of this month we will have standardized the formats of these assessments to align with guidance from the National Institute of Standards and Technology.” The response also noted the FTC would improve the tracking of annual training it provides for “individuals with specific security responsibilities."