The agency that administers the federal government’s 401(k)-style retirement program received the lowest of five possible scores on a recent audit to determine its compliance with federal information ...

BSI recently updated ISO 27006, which provides minimum requirements for auditor competency for bodies that provide audit and certification of information security management systems (ISMS). John ...

The Department of Homeland Security needs to up its game on information security, according to an audit released last week. Private sector auditor KPMG conducted after-hours walkthroughs of employee ...

On October 31, OIG for the Fed and the CFPB released its 2024 Audit of the Board’s Information Security Program. The audit found that the Board’s information security program continues to operate at a ...

The Department of Veterans Affairs “continues to face significant challenges” in complying with the Federal Information Security Modernization Act—or FISMA—according to an audit released by the VA ...

Truist Financial has hired a new chief audit officer from Mitsubishi UFJ Financial Group and a new chief information security officer with experience at Goldman Sachs. Processing Content Denise DeMaio ...

The United States Office of Management and Budget (“OMB”) recently issued a Compliance Supplement for 2019 that includes, for the first time, audit objectives for colleges and universities concerning ...

A security audit is an independent review and assessment of an organization’s security protocols, processes and systems. An outside party conducts the audit and typically includes a detailed review of ...

In regulated industries, DevSecOps teams have to satisfy strict audit, traceability and documentation requirements that can ...

Minnesotans' personal information stored on the state's large, mainframe computers — including tax return information and bank account numbers — is at risk of being stolen, the Legislative Auditor ...