U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Breadcrumb

U.S. Department of Agriculture, Office of Chief Information Officer, Fiscal Year 2022 Federal Information Security Modernization Act

Report Information

Date Issued
Report Number:
50503-0009-12
Report Type
Audit
Component
Office of the Chief Information Officer
Description
As required by FISMA, OIG reviewed USDA’s ongoing efforts to improve its information technology security program and practices during FY 2022.
Joint Report
No
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0

Recommendations

Prioritize resources to implement NIST SP 800-53, Rev. 5, security control requirements for the OCIO information security program in accordance with OMB A-130.

Document and implement a process for formally transferring responsibility when there is a change to the designated AO.

Verify that all selected systems and inherited controls that transferred AOs and have not been re-authorized have formally transferred responsibility for the system or inherited controls.

Ensure that privileged user reviews are completed in accordance with DR 3505-003.

Verify controls to ensure that all privileged users are successfully transferred to the identity management system.