DHS Needs Additional Oversight and Documentation to Ensure Progress in Joint Cybersecurity Efforts

View Report

Date Issued

Wednesday, November 24, 2021

Submitting OIG

Department of Homeland Security OIG

Other Participating OIGs

Department of Homeland Security OIG

Agencies Reviewed/Investigated

Department of Homeland Security

Report Number

OIG-22-06

Report Description

We determined that DHS made some progress in improving cybersecurity collaboration and coordination in accordance with the CAP and memorandums. Over the past 6 years, DHS participated in critical infrastructure programs, improved cyber situational awareness, collocated DHS and DoD liaisons, and conducted cybersecurity readiness training.

Report Type

Audit

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Open Recommendations

This report has 4 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use
1	No	$0	$0
We recommend the Director of CISA develop an implementation plan to conduct periodic assessments for monitoring theprogress of goals and activities and complete annual updates on action items, as required by the Cyber Action Plan and associated 2015 and 2018memorandums.
2	No	$0	$0
We recommend the Director of CISA conduct centralized tracking and completion of signed closeout summaries to reconcile the ongoing,outstanding, and open tasks and activities, as required by the Cyber Action Plan and associated 2015 and 2018 memorandums.
3	No	$0	$0
We recommend the Director of CISA establish performance measures to ensure the effectiveness and completion of the CyberAction Plan and associated 2015 and 2018 memorandum activities.
4	No	$0	$0
We recommend the Director of CISA establish the DHS governance structure and ensure it consists of an Executive Committee thatmeets at least semi-annually and a Steering Committee that meets at least quarterly, as required.