FY 2022 FEDERAL INFORMATION SECURITY MODERNIZATION ACT INDEPENDENT EVALUATION

The Office of Inspector General (OIG) contracted with the independent certified public accounting firm of Harper, Rains, Knight & Company, P.A. (HRK) to conduct a performance audit of EEOC’s information security program and practices in accordance with the Federal Information Security Modernization Act of 2014 (FISMA) for Fiscal Year 2022. The objective of this performance audit was to assess the effectiveness of the EEOC’s information security program and practices for the period October 1, 2021, through September 30, 2022. HRK found that the EEOC has established and maintained a constantly implemented information security program and practices. HRK has identified in its report areas of improvement in the form of findings and recommendations. The OIG, along with HRK, will conduct a virtual exit conference regarding FISMA on November 16, 2022, at 2:00 pm via MS Teams where the auditors from HRK will discuss the results of the audit.