Report | Dec. 1, 2021

Project Announcement: Review of DoD’s Compliance With the Federal Information Security Modernization Act of 2014 (Project No. D2022-D000CP-0034.000)

Audit

We plan to begin the subject review in December 2021. Public Law 113-283, Title III, Section 3555, "Federal Information Security Management Act of 2014," December 18, 2014, requires each Federal agency to conduct an annual independent evaluation to determine the effectiveness of the agency's information security program and practices. The objective of this review is to determine the effectiveness of the DoD’s information security policies, procedures, and practices and provide an annual independent evaluation in accordance with the Federal Information Security Modernization Act of 2014. We may revise the objective as the review proceeds, and we will also consider suggestions from management for additional or revised objectives.