QMS 102 Lecture Notes - Lecture 12: Spyware, Identity Management, Antivirus Software

The office of personnel management (opm) contained many security and control issues, which lead to the problem of being hacked. Opm had deficiencies in its information system security program. Opm had incomplete security authorization packages, weaknesses in its testing information security controls, and much more. Opm also had outdated technology and a weak management system. The presence of outdated technology is one of the main reasons for. Furthermore, opm did not maintain their inventory of systems, having eleven servers running and functioning without valid authorization. Opm"s weakness also lied in their lacking leadership. In fact, due to the managers of opm being politically appointed a lot of them lacked the knowledge or experience to make informed or proper decisions about cybersecurity. The management issue that contributed to the hacking of opm was the management"s lack of experience and expertise towards cybersecurity. Ergo, management most likely did not take these cyber warnings seriously.