Date Issued
Report Number
I23IT0111
What We Did
The objective of our inspection was to determine if the Department established and implemented controls throughout all phases of its incident response lifecycle to ensure compliance with Federal guidance and regulations.
What We Found
Although the Department established policies, procedures, and guidance governing its incident response program, we noted areas where it can improve its current process.
What We Recommend
We made 12 recommendations to improve the Department’s incident response program.
Management Challenge Area
Information Technology Security