CFPB Report: 2020-IT-C-008R March 23, 2020
We tested the Bureau's processes for categorizing cybersecurity events and ensuring the timely closure of related cybersecurity incident tickets. We completed this testing as part of our 2019 audit of the Bureau's information security program.
Our testing showed that the Bureau is not consistently categorizing information security events in its cybersecurity incident response tickets. This could negatively affect the Bureau's analysis of these events as well as the resulting responses to any confirmed security incidents. This memorandum provides the details of our testing results to facilitate the Bureau's ongoing efforts to address a recommendation from our 2019 audit to strengthen controls in this area.
Given the sensitivity of our review, this memorandum is restricted.