Submitting OIG:
Report Description:
Although the Department and FSA made progress in strengthening their information security programs, we found weaknesses in the Department’s and FSA’s information systems, and those systems continued to be vulnerable to security threats. As guided by the maturity model used in the FY 2017 IG FISMA Metrics, we found the Department and FSA were not effective in all five security functions—Identify, Protect, Detect, Respond, and Recover. We also identified findings in all seven metric domains: (1) Risk Management, (2) Configuration Management, (3) Identity and Access Management, (4) Security Training, (5) Information Security Continuous Monitoring, (6) Incident Response, and (7) Contingency Planning.
Date Issued:
Tuesday, October 31, 2017
Agency Reviewed / Investigated:
Submitting OIG-Specific Report Number:
A11R0001
Location(s):
Agency-Wide
Type of Report:
Audit
Questioned Costs:
$0
Funds for Better Use:
$0
Number of Recommendations:
37
View Document:
Attachment | Size |
---|---|
a11r0001.pdf | 4.63 MB |
Additional Details Link: