OMB Targets Contractors’ IT Security The Office of Management and Budget has told agencies to increase their oversight of IT systems operated by contractors, to ensure that those systems meet security standards. In its annual report to Congress on the implementation of the 2002 Federal Information Security Management Act, OMB said inspectors general should determine whether contractor-operated systems maintain proper security. Its survey found three inspectors general reported that their agencies “rarely” conduct oversight of contractor-operated systems: the Defense Department, Homeland Security and State. IGs for Agriculture, HHS and NASA said their agencies “sometimes” checked the security of those systems. The survey found that contractors or other non-government organizations manage about 1,100 IT systems, more than one-tenth of the total number. OMB found slight improvement in agencies’ overall compliance with IT security standards. It said 85% of IT systems were certified and accredited in 2005, up from 77% the year before, but still short of the administration’s goal of 90%.