U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Independent Audit on the Effectiveness of EXIM’s Information Security - Fiscal Year 2022

Report Information

Date Issued
Report Number
OIG-AR-23-04
Report Type
Audit
Joint Report
Yes
Participating OIG
Export-Import Bank of the United States OIG
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
View report on Oversight.gov

Recommendations

Update and implement the Enterprise Risk Management program, including applicable policies and procedures, to align with the new requirements outlined in the NIST SP 800-53, Rev. 5, Security and Privacy Controls for Information Systems and Organizations, dated September 23, 2020.

Verified closed on 6/24/2024

Implement and test controls within the newly implemented GRC system.

Verified closed on 7/31/2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

Verified closed on 8/9/2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

Verified closed on 8/9/2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

Closed on 5/9/2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

Verified closed on 8/9/2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

Closed on 5/9/2023