Fiscal Year 2025 Independent Evaluation of the SEC's Implementation of the Federal Information Security Modernization Act of 2014, Report No. 589

Title Full

Date Issued

Wednesday, February 25, 2026

Submitting OIG

Securities and Exchange Commission OIG

Agencies Reviewed/Investigated

Securities and Exchange Commission

Report Number

589

Report Description

Fiscal Year 2025 Independent Evaluation of the SEC's Implementation of the Federal Information Security Modernization Act of 2014, Report No. 589

Report Type

Inspection / Evaluation

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Report updated under NDAA 5274

Open Recommendations

This report has 1 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use	Additional Details
2	No	$0	$0
We recommend that the Office of Information Technology update training for all employees on identifying and reporting suspected phishing emails, and establish a process to periodically remind employees of these responsibilities.