OIG: 2020 Audit of the Board’s Information Security Program

If you are seeing this message, Javascript is disabled. Disclaimer for all external links found on this page: The Office of Inspector General (OIG) for the Board of Governors of the Federal Reserve System and the Consumer Financial Protection Bureau does not necessarily endorse the views expressed or the facts presented on the external sites. The OIG does not endorse any commercial products that may be advertised or on the external sites. The OIG's privacy policy does not apply on the external sites. Please check the site for its privacy notice.

Skip to Navigation

IN THIS SECTION

Skip SHARE THIS PAGE section Skip STAY CONNECTED section

Board Report: 2020-IT-B-020 November 2, 2020

The Federal Information Security Modernization Act of 2014 requires us to perform an annual, independent evaluation of the Board's information security program. We evaluated the program's maturity level (from a possible low of 1 to a possible high of 5) across several areas.

Overall, the Board's information security program continues to operate effectively at level 4 (managed and measurable). Nonetheless, the Board has opportunities to mature its information security program. Similar to our previous FISMA audits, a consistent theme we noted is that the decentralization of information technology services results in an incomplete view of the risks affecting the Board's security posture.

We are making recommendations to strengthen the Board's information security program in several areas.

HOTLINE

IN THIS SECTION

2020 Audit of the Board’s Information Security Program

available formats

Summary:

Full Report:

LINKS TO THE BOARD AND THE CFPB

HOTLINE

IN THIS SECTION

SHARE THIS PAGE

STAY CONNECTED

2020 Audit of the Board’s Information Security Program

available formats

Summary:

Full Report:

LINKS TO THE BOARD AND THE CFPB

RELATED SITES AND RESOURCES