U.S. Department of Agriculture, Office of the Chief Information Officer, Fiscal Year 2021 Federal Information Security Modernization Act

We recommend the Department authorize and approve its Security Awareness and Training Strategy.

We recommend the Department develop, administer, and maintain records of completing role-based security training for individuals with significant security responsibilities.

We recommend the Department and its mission areas administer and document contingency training for individuals with contingency roles and responsibilities.

We recommend the Department perform a complete review of its system-level BIAs within the timeframe prescribed by DR 3571-001.

We recommend the Department update and approve the information system contingency plans to reflect current business processes, requirements, and Governmentwide security policy and guidance.