Agency Response Dated June 6, 2024: The NRC has increased the SIEM tool licensing level and acquired funding to adequately support procurement and onboarding. The NRC plans to implement all requirements across EL maturity tiers EL1 (Basic), EL2 (Intermediate), and EL3 (Advanced) to ensure events are logged and tracked in accordance with OMBM- 21-31, “Improving the Federal Government’s Investigative and Remediation Capabilities Related to Cybersecurity Incidents,” dated August 27, 2021, by the fourth quarter (Q4) of FY 2025. The NRC is taking a phased approach to meeting the requirements of OMB M-21-31. The EL1 logging level is scheduled to be completed by 7/31/24. The EL2 logging level is scheduled to be completed by 3/31/25. The EL3 logging level is scheduled to be completed by 8/01/25. Target Completion Date: FY 2025, Q4. OIG Analysis: The OIG will close the recommendation when it verifies that the NRC management increases the current SIEM tool licensing level and acquires funding to adequately support the procurement, onboarding, and implementation of requirements across all EL maturity tiers to ensure events are logged and tracked in accordance with OMB M-21-31. This recommendation remains open and resolved.