PRtf
U.S. Environmental Protection Agency
Office of Inspector General

At  a  Glance
                                                                                   09-P-0227
                                                                               August 31, 2009
                                                           Catalyst for Improving the Environment
Why We Did This Review

The Office of Inspector
General contracted with
Williams, Adley & Company,
LLP, to conduct the annual
audit of the U.S.
Environmental Protection
Agency's (EPA's) compliance
with the Federal Information
Security Management Act
(FISMA).  Williams, Adley &
Company, LLP, conducted the
network vulnerability testing
of the Agency's network
devices located at EPA's
Finance Center in Research
Triangle Park, North Carolina.
Background

Williams, Adley & Company,
LLP conducted network
vulnerability testing to
identify high risk
vulnerabilities. Williams,
Adley & Company, LLP
presented the test results to the
appropriate EPA officials to
remediate the weaknesses or
document planned actions to
resolve the vulnerability.
For further information,
contact our Office of
Congressional, Public Affairs
and Management at
(202)566-2391.

           Results of Technical Network Vulnerability
           Assessment:  EPA's Research  Triangle Park
           Finance Center
            What Williams, Adley & Company, LLP, Found
           Vulnerability testing conducted in April 2009 of EPA's Research Triangle Park
           Finance Center network identified Internet Protocol addresses with several high-
           risk vulnerabilities. Research Triangle Park personnel took immediate action to
           remediate these vulnerabilities. Therefore, we are closing this audit report upon
           issuance in our audit tracking system.

           Due to the sensitive nature of the report's technical findings, the full report is not
           available to the public.

-------