Submitting OIG:
Report Description:
The Federal Information Security Modernization Act (FISMA) requires that the Office of Inspector General (OIG) reviews the Small Business Administration’s (SBA’s) information security program. To determine SBA’s compliance with FISMA, OIG contracted with an independent public accountant, KPMG, to perform review procedures relating to FISMA. OIG monitored KPMG’s work and reported SBA’s compliance with FISMA in the Agency FISMA filings in October 2018. We also assessed the Agency’s progress in implementing open recommendations and compared our current year assessment with our fiscal year 2017 FISMA evaluation. In addition to the 5 open FISMA recommendations noted in appendix II, OIG made 18 new recommendations to address FISMA-related vulnerabilities. SBA fully agreed with all 18 recommendations.
Date Issued:
Tuesday, April 9, 2019
Agency Reviewed / Investigated:
Submitting OIG-Specific Report Number:
19-09
Location(s):
Agency-Wide
Type of Report:
Audit
Number of Recommendations:
18
View Document:
Attachment | Size |
---|---|
SBA-OIG-Report-19-09.pdf | 617.69 KB |
Additional Details Link: