Information Technology Management Letter for the United States Coast Guard Component of the FY 2016 DHS Financial Statement Audit

Most of the deficiencies identified by the independent public accounting firm KPMG, LLP were associated with access controls, segregation of duties, and configuration management of the U.S. Coast Guard’s core financial and feeder systems.  The deficiencies collectively limited Coast Guard’s ability to ensure that critical financial and operational data were maintained in such a manner as to ensure their confidentiality, integrity, and availability.  We recommend that the Coast Guard, in coordination with DHS’ Chief Information Officer and Acting Chief Financial Officer, make improvements to Coast Guard’s financial management systems and associated information technology security program.