OTTAWA—An internal review has uncovered weak security practices when it comes to information technology at Public Safety Canada—from lax controls on the use of portable flash drives to inadequate awareness and training.
The review found employees who were no longer with the department “still had privileged access to the network” and that some current employees had unnecessary administrative access to “mission critical applications.”
