Audit of the NCUA Office of National Examinations and Supervision Oversight of Credit Union Cybersecurity Programs

The National Credit Union Administration (NCUA) Office of Inspector General conducted this self-initiated audit to further assess NCUA’s Information Technology examination program. The objective of our audit was to determine whether the NCUA Office of National Examinations and Supervision (ONES) provides for adequate oversight of its credit unions’ cybersecurity programs to assess whether the credit unions are taking sufficient and appropriate measures to protect the confidentiality, availability, and integrity of credit union assets and sensitive credit union data against cyber-attacks.