Skip to Navigation
Skip to Main content
OIG Home
OIG Home


Skip SHARE THIS PAGE section Skip STAY CONNECTED section

CFPB Report: 2014-IT-C-020 November 14, 2014

2014 Audit of the CFPB's Information Security Program

available formats

Report Contributors and Abbreviations

Report Contributors

Khalid Hasan, OIG Manager
Joshua Dieckert, Auditor-in-Charge
Daniel Megalo, IT Auditor
Paul Vaclavik, IT Auditor
Peter Sheridan, Senior OIG Manager for Information Technology Audits
Andrew Patchan Jr., Associate Inspector General for Information Technology


CFPB Consumer Financial Protection Bureau
CIO Chief Information Officer
ConOps United States Government Concept of Operations for Information Security Continuous Monitoring
DHS U.S. Department of Homeland Security
FISMA Federal Information Security Management Act of 2002
IG Inspector General
ISCM information security continuous monitoring
NIST National Institute of Standards and Technology
OIG Office of Inspector General
SP 800-50 Special Publication 800-50, Building an Information Technology Security Awareness and Training Program
SP 800-61 Special Publication 800-61, Revision 2, Computer Security Incident Handling Guide
SP 800-128 Special Publication 800-128, Guide for Security-Focused Configuration Management of Information Systems
SP 800-137 Special Publication 800-137, Information Security Continuous Monitoring for Federal Information Systems and Organizations
Treasury U.S. Department of the Treasury