dept

An obscure little State Department agency whose work is called “critical to the Department’s information security posture” has been in a shambles for years, and is still in chaos, according to an audit report by the department’s inspector general released yesterday.

As one result of all the bumbling and inaction, the security checks that the agency is supposed to perform and subsequent approvals for use that it is supposed to bestow every three years on 36 of those State Department systems have lapsed entirely, meaning that they are operating, in effect, illegally.

Some of the lapses have gone on for two years; in at least a couple of cases involving information systems that the audit calls “primary general support systems,” the lapses have gone on since 2007.