Public Law 113-283, “Federal Information Security Management Act of 2014 [FISMA],” December 18, 2014, requires each Federal agency to conduct an annual independent evaluation to determine the effectiveness of the agency’s information security program and practices. The objective of this review is to determine the effectiveness of the DoD’s information security policies, procedures, and practices and provide an annual independent evaluation in accordance with FISMA.