Skip to main content
U.S. flag

An official website of the United States government

New Audit Announcements

Date

Audit Initiated of DOT’s Information Security Program and Practices for Fiscal Year 2022

Requested By
Required by the Federal Information Security Modernization Act of 2014
Project ID
22T3004T000
File Attachment

The Federal Information Security Modernization Act of 2014 (FISMA) requires Federal agencies to implement information security programs. The act also requires agencies to conduct annual independent reviews to determine the effectiveness of their programs and report the reviews’ results to the Office of Management and Budget (OMB). We have contracted with CliftonLarsonAllen LLP (CLA), an independent public accounting firm, to conduct the review of the Department of Transportation’s (DOT) information security program for fiscal year 2022, subject to our oversight. The audit objective will be to determine the effectiveness of DOT’s information security program and practices. We will review a group of FISMA security metrics and performance measures selected by OMB and submit the results of our assessment through CyberScope to OMB as required.