The United States Office of Management and Budget (“OMB”) recently issued a Compliance Supplement for 2019 that includes, for the first time, audit objectives for colleges and universities concerning ...

Information security auditing plays key role in providing any organization’s good security level. Because of the high cost, time and human resource intensiveness, audit expenses optimization becomes ...

The agency that administers the federal government’s 401(k)-style retirement program received the lowest of five possible scores on a recent audit to determine its compliance with federal information ...

On October 31, OIG for the Fed and the CFPB released its 2024 Audit of the Board’s Information Security Program. The audit found that the Board’s information security program continues to operate at a ...

Security is about alleviating risks. Proper security audits help organizations spot weak points in their systems, processes and controls that hackers could potentially exploit or that insider threats ...

The Department of Veterans Affairs “continues to face significant challenges” in complying with the Federal Information Security Modernization Act—or FISMA—according to an audit released by the VA ...

The Consumer Financial Protection Bureau got to experience what it’s like to go through an examination. The Office of Inspector General (OIG) within the Federal Reserve recently released findings and ...

A security audit is an independent review and assessment of an organization’s security protocols, processes and systems. An outside party conducts the audit and typically includes a detailed review of ...

FORT HUACHUCA, Ariz. – The Communications Security Logistics Activity, known as CSLA, plays a critical role as the Army's COMSEC Commodity Manager and Subject Matter Expert. CSLA’s mission is to ...

Every company has to check the security credentials of its software vendors before signing on the dotted line to make a purchase. It usually involves a clunky non-digital process of signing NDAs and ...

The Small Business Administration’s information security program remains “not effective,” despite improvement in cybersecurity oversight of incident response, risk management and contingency planning.