Audit of the Management of IT Certification and Accreditation Program

The Audit of the Management of IT Certification and Accreditation Program was conducted in 2012 to ensure that the processes used within the IT Certification and Accreditation Program for departmental systems and applications are commensurate with risk, and are effective and efficient in mitigating IT security risks to the Department.

The department is taking action to address the audit recommendations.

Pursuant to Section 16 (2) (c) of the Access to Information Act, the results of the audit will not be published.

NRCan has thoroughly weighed the public interest for disclosure against the need to ensure the safety and security of employees and national interests in making its decision.