Board Report: 2014-IT-B-019 November 14, 2014
Andrew Gibson, Project Lead
Chris Lambeth, Senior IT Auditor
Adam Scheps, IT Auditor
Peter Sheridan, Senior OIG Manager for Information Technology Audits
Andrew Patchan Jr., Associate Inspector General for Information Technology
| Board | Board of Governors of the Federal Reserve System |
| CIO | Chief Information Officer |
| COOP | continuity of operations program |
| DHS | U.S. Department of Homeland Security |
| Division of IT | Division of Information Technology |
| FISMA | Federal Information Security Management Act of 2002 |
| ISC | Information Security Compliance |
| ISCM | information security continuous monitoring |
| ISO | Information Security Officer |
| IT | information technology |
| NIST | National Institute of Standards and Technology |
| OMB | Office of Management and Budget |
| POA&M | plan of action and milestones |
| RMF | Risk Management Framework |
| SP 800-37 |
Special Publication 800-37, Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems |
| SP 800-39 | Special Publication 800-39, Managing Information Security Risk |
| SP 800-53 |
Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations |
| SP 800-137 |
Special Publication 800-137, Information Security Continuous Monitoring for Federal Information Systems and Organizations |
