Audit Initiated of DOT’s Information Security Program and Practices for Fiscal Year 2018
OIG is initiating its fiscal year 2018 audit of the Department of Transportation’s (DOT) information security program and practices, as required by the Federal Information Security Modernization Act of 2014. Our audit objective will be to determine the effectiveness of DOT’s information security program and practices in five function areas—Identify, Protect, Detect, Respond, and Recover. We will also assess and report on the results of security metrics and performance measures through Cyberscope, as required by the Office of Management and Budget (OMB). The results of our assessment will be incorporated in the Secretary’s fiscal year 2018 submission to OMB.