The objective of this review was to perform an independent assessment of the Peace Corps’ information security program, including testing the effectiveness of security controls for a subset of systems as required, for FY 2018. Our results demonstrate that the Peace Corps lacks an effective information security program. We found problems relating to people, processes, and technology. Furthermore, OIG found weaknesses across all the FISMA reportable areas. To ensure the agency’s information, operations, and assets are protected, it is critical that the Peace Corps achieve full compliance with FISMA and other Federal laws and regulations that apply to managing its IT security infrastructure.
Report File
Date Issued
Submitting OIG
Peace Corps OIG
Other Participating OIGs
Peace Corps OIG
Agencies Reviewed/Investigated
Peace Corps
Components
Agency-wide
Report Description
Report Type
Review
Agency Wide
Yes
Number of Recommendations
23