Audit: California Agencies Vulnerable to IT Security Breach

This is an archived article and the information in the article may be outdated. Please look at the time stamp on the story to see when it was last updated.


California’s state auditor reports that major gaps in the state’s information security systems are leaving many state agencies vulnerable to a security breach.

Auditor Elaine Howle reported Tuesday that only four out of 77 agencies that responded to her request say they have fully complied with the state’s security standards. Many also have not sufficiently planned for interruptions or disasters.

Howle’s report leaves the agencies anonymous to protect security. But she says more than half of those surveyed say the state’s guidance for complying with IT standards is insufficient.

That leaves sensitive data such as Social Security numbers, health records and income tax information vulnerable to a breach.

The Department of Technology, which oversees state IT, says it values security and is taking steps to boost compliance.