Performance Audit Federal Information Security Modernization Act of 2014 for FY 2023

This report presents the results of our independent performance audit of the U.S. EqualEmployment Opportunity Commission’s (EEOC) information security program and practices inaccordance with the Federal Information Security Modernization Act of 2014 (FISMA). FISMArequires Federal agencies, including EEOC, to have an annual independent evaluation performedof their information security programs and practices to determine the effectiveness of suchprograms and practices, and to report the results of the evaluation to the Office of Managementand Budget (OMB) and the Department of Homeland Security (DHS). The EEOC Office ofInspector General (OIG) contracted with Harper, Rains, Knight & Company, PA (HRK) to conducta performance audit of EEOC’s information security program and practices for Fiscal Year (FY)2023.