Dec. 7, 2018
Project Announcement: Audit of DoD's Implementation of the Cybersecurity Information Sharing Act of 2015 (Project No. D2019-DOOOCP-0060.000)
We plan to begin the subject audit in December 2018. We are conducting this audit as mandated by the Cybersecurity Information Sharing Act of2015 (CISA), section 107, "Oversight of Government Activities." CISA requires the Inspectors General of seven Federal entities-the Departments of Commerce, Defense, Energy, Homeland Security, Justice, and Treasury, and the Office of the Director of National Intelligence-to jointly report to Congress no later than 2 years after the enactment date of CISA, and once every 2 years thereafter, on the actions of the Executive branch of the U.S. Government to carry out the CISA requirements. As such, the objective of this joint project is to assess DoD' s actions taken to carry out the CISA requirements during 2017 and 2018 and to submit an unclassified, interagency report to Congress by December 2019 (attached). We will consider suggestions from management on additional or revised objectives.