Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Independent Audit on the Effectiveness of EXIM’s Information Security - Fiscal Year 2022

Report Information

Date Issued

March 2, 2023

Report Number

OIG-AR-23-04

Report Type

Audit

Joint Report

No

Agency Wide

Yes (agency-wide)

Questioned Costs

$0

Funds for Better Use

$0

View report on Oversight.gov

Recommendations

March 1, 2023

Update and implement the Enterprise Risk Management program, including applicable policies and procedures, to align with the new requirements outlined in the NIST SP 800-53, Rev. 5, Security and Privacy Controls for Information Systems and Organizations...

March 1, 2023

Implement and test controls within the newly implemented GRC system.

March 1, 2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

March 1, 2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

March 1, 2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

March 1, 2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.

March 1, 2023

Recommendation redacted per exemptions (b)(4) and (b)(7)(E) of the Freedom of Information Act.