U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Independent Evaluation of the DNFSB’S Implementation of the Federal Information Security Modernization Act of 2014 for FY 2021

Report Information

Date Issued
Report Number
DNFSB-22-A-04
Report Type
Inspection / Evaluation
Joint Report
Yes
Participating OIG
Nuclear Regulatory Commission OIG
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
View report on Oversight.gov

Recommendations

Define the qualitative and quantitative performance measures that will be used to assess the effectiveness of its ISCM program.

Define handling procedures for specific types of incidents, processes and supporting technologies for detecting and analyzing incidents, including the types of precursors and indicators and how they are generated and reviewed for prioritizing incidents.

Consistently test the incident response plan annually.

Update the Agency’s incident response plan to reflect the USCERT incident reporting guidelines.

Allocate and train staff with significant incident response responsibilities.

Status: Open: Resolved. DNFSB has identified appropriate Incident Response training and select members of the Incident Response Team have completed the training. DNFSB will deliver this training to identified individuals by Q1 FY 2024.