Skip to Navigation
Skip to Main content
OIG Home
OIG Home


Skip SHARE THIS PAGE section Skip STAY CONNECTED section

Board Report: 2014-IT-B-019 November 14, 2014

2014 Audit of the Board's Information Security Program

available formats

Report Contributors and Abbreviations

Report Contributors

Andrew Gibson, Project Lead
Chris Lambeth, Senior IT Auditor
Adam Scheps, IT Auditor
Peter Sheridan, Senior OIG Manager for Information Technology Audits
Andrew Patchan Jr., Associate Inspector General for Information Technology


Board Board of Governors of the Federal Reserve System
CIO Chief Information Officer
COOP continuity of operations program
DHS U.S. Department of Homeland Security
Division of IT Division of Information Technology
FISMA Federal Information Security Management Act of 2002
ISC Information Security Compliance
ISCM information security continuous monitoring
ISO Information Security Officer
IT information technology
NIST National Institute of Standards and Technology
OMB Office of Management and Budget
POA&M plan of action and milestones
RMF Risk Management Framework
SP 800-37 Special Publication 800-37, Revision 1, Guide for Applying the Risk Management
Framework to Federal Information Systems
SP 800-39 Special Publication 800-39, Managing Information Security Risk
SP 800-53 Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal
Information Systems and Organizations
SP 800-137 Special Publication 800-137, Information Security Continuous Monitoring for
Federal Information Systems and Organizations