U.S. Department of Agriculture, Office of Chief Information Officer, Fiscal Year 2022 Federal Information Security Modernization Act
Report Information
Recommendations
Provide targeted PII trainings to the impacted mission area in a more frequent manner to ensure mission area personnel are properly trained in identifying and reporting PII incidents and breaches in a timely manner.
Design and implement a process to ensure risk management, identity and access management, and information security continuous monitoring internal control documentation is retained to support its system of internal controls and operational needs, as required by GAO’s Standards for Internal Control in the Federal Government Documentation of the Internal Control System.