U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Audit of the U.S. Election Assistance Commission's Compliance with the Federal Information Security Modernization Act for Fiscal Year 2022

Report Information

Date Issued
Report Number
O22HQ0006-23-02
Report Type
Audit
Subject
IT
Description

EAC OIG, through the independent public accounting firm of Brown & Company CPAs and Management Consultants, PLLC, audited EAC’s information security program for fiscal year 2022 in support of the Federal Information Security Modernization Act of 2014 (FISMA). The objective was to determine whether EAC implemented selected security controls for certain information systems in support of FISMA.

Questioned Costs
$0
Funds for Better Use
$0
View report on Oversight.gov

Status of Recommendations

Closed

We recommend EAC OCIO remediate vulnerabilities in the network identified, according to the agency’s policy, and document the results or document acceptance of the risks of those vulnerabilities.

Open

We recommend EAC OCIO develop and implement a flaw remediation plan for vulnerabilities that cannot be remediated within the policy recommended timeframes.

Closed

We recommend EAC OCIO develop a process for tracking software license usage.

Closed

We recommend EAC OCIO perform annual contingency plan testing.

Closed

We recommend EAC OCIO provide contingency training to information system users consistent with assigned roles and responsibilities.