Improper Usage of USDA's Information Technology Resources

OHRM, in coordination with OCIO, needs to define improper usage activity and develop and implement a process, documented via policy, for ensuring all parties (supervisors, HR personnel, agencies’ IT and incident handling teams) are properly notified of improper usage incidents.

OCIO, in coordination with Departmental Administration, needs to develop and implement a process, documented via policy, for ensuring contractors and other non-Government employees are held accountable to the same improper usage standards as employees.

ARS needs to implement procedures in accordance with Departmental policies, developed in response to recommendations 1 and 2, to ensure appropriate management officials such as supervisors, contracting officials, and supervisors of non-Government personnel are notified to make sure employees, contractors, or non-Government personnel that engage in improper usage of IT resources are properly tracked and monitored.

APHIS needs to implement procedures in accordance with Departmental policies, developed in response to recommendations 1 and 2, to ensure appropriate management officials such as supervisors, contracting officials, and supervisors of non-Government personnel are notified to make sure employees, contractors, or non-Government personnel that engage in improper usage of IT resources are properly tracked and monitored.

FS needs to implement procedures in accordance with Departmental policies, developed in response to recommendations 1 and 2, to ensure appropriate management officials such as supervisors, contracting officials, and supervisors of non-Government personnel are notified to make sure employees, contractors, or non-Government personnel that engage in improper usage of IT resources are properly tracked and monitored.