DHS has also make progress protecting against insider threats, and is working toward proper and consistent use of social media, according to the IG.
It said components are establishing Security Operations Centers responsible for monitoring of information systems to help detect and respond to insider threat incidents.
However, it noted that TSA, CBP, and USCIS could further develop their insider threat program by implementing specific policies and procedures, as well as a risk management plan, and enhance existing component-wide training and awareness programs. Further, it said DHS can strengthen its situational awareness against insider threats by centrally monitoring information systems and by augmenting current IT applications and controls to better detect or prevent instances of unauthorized removal or transmission of sensitive information outside of DHS networks.
DHS has also steadily increased its use of various social media sites over the past five years and initiatives are being effectively managed and administered by department- and component-level public affairs offices, the IG concluded. FEMA has been out front in terms of using social media for disaster recovery, for example.
The IG said component public affairs offices have also implemented policies and procedures to provide guidance to employees. However, it called on DHS to communicate the official process for establishing social media accounts, and to establish a list of approved social media platforms, as well as complete a department-wide social media policy andrequire components to develop and implement their own tailored social media
