National Credit Union Administration Federal Information Security Modernization Act of 2014 Audit—Fiscal Year 2022

View Report

Date Issued

Wednesday, October 26, 2022

Submitting OIG

National Credit Union Administration OIG

Other Participating OIGs

National Credit Union Administration OIG

Agencies Reviewed/Investigated

National Credit Union Administration

Report Number

OIG-22-07

Report Description

This report summarizes the results of CLA’s independent evaluation and contains four recommendations that will assist the agency in improving the effectiveness of its information security and its privacy programs and practices. NCUA management concurred with and has planned corrective actions to address the recommendations.

Report Type

Audit

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Additional Details

https://www.ncua.gov/files/audit-reports/oig-audit-compliance-fisma-2022.pdf

Open Recommendations

This report has 2 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use
3.OIG-22-07Recommendation	No	$0	$0
Conduct an analysis of the technologies employed within the NCUA operational environment and document a plan to reduce the wide variety of differing technologies requiring support and vulnerability remediation, as feasible.
4.OIG-22-07Recommendation	No	$0	$0
Implement a solution that resolves the privileged access management vulnerability.