The Secret Service has serious gaps in its mobile device management and security practices, leading to heightened risks for the nation’s leaders, other protectees and its employees, according to an inspector general report published Thursday.
The security and management gaps included a culture of using personal devices even in protective operations, a lack of security software on government-issued devices and the approval of apps containing vulnerabilities, among others.
Much of the blame, per the report, lies with the Department of Homeland Security unit’s Office of the CIO, which is responsible for establishing security standards and ensuring compliance with policies.
“Because OCIO’s process for identifying and implementing capabilities on [government-furnished equipment] mobile devices did not ensure that employees were prepared — and because the use of personal devices was normalized — there is a risk that OCIO may not properly identify and prioritize other operational needs,” the inspector general report said.
Employees pointed to issues with their government-issued devices as the reason for the lapse in protocol, citing technical…
