Skip to main content
Title Full
Evaluation of DHS' Information Security Program for Fiscal Year 2024
Date Issued
Submitting OIG
Department of Homeland Security OIG
Agencies Reviewed/Investigated
Department of Homeland Security
Report Number
OIG-25-28
Report Description

We rated the Department of Homeland Security’s information security program for fiscal year 2024 as “effective,” according to this year’s reporting instructions. We based this rating on our evaluation of the Department’s compliance with requirements of the Federal Information Security Modernization Act of 2014 for unclassified and national security systems. DHS received a maturity rating of “Level 5 – Optimized” in the Identify and Respond functions and received a maturity rating of “Level 4 – Managed and Measurable” in the Protect, Detect, and Recover functions based on this year’s reporting guidance

Report Type
Audit
Agency Wide
Yes
Number of Recommendations
1
Questioned Costs
$0
Funds for Better Use
$0
Report updated under NDAA 5274
No
External Entity
https://www.oig.dhs.gov/sites/default/files/assets/2025-07/OIG-25-28-Jun25.pdf
External Link
https://www.oig.dhs.gov/sites/default/files/assets/2025-07/OIG-25-28-Jun25.pdf

Open Recommendations

This report has 1 open recommendations.
Recommendation Number Significant Recommendation Recommended Questioned Costs Recommended Funds for Better Use Additional Details
1 No $0 $0

We recommend the DHS Chief Information Officer strengthen oversight to ensure components adhere to DHS’ policies to remediate all known information security weaknesses in a timely manner.

Department of Homeland Security OIG

United States