Fiscal Year 2025 Pension Benefit Guaranty Corporation Federal Information Security Modernization Act of 2014 (FISMA) Independent Performance Audit (AUD-2025-12)

Fiscal Year 2025 Pension Benefit Guaranty Corporation Federal Information Security Modernization Act of 2014 (FISMA) Independent Performance Audit (AUD-2025-12), issued September 30, 2025

We contracted with KPMG to assess PBGC’s information security program as required by Federal Information Security Modernization Act of 2014 (FISMA). KPMG reviewed a sample of eight systems and completed fieldwork to address the FY 2025 IG FISMA metrics developed by OMB, DHS, and the Council of the Inspectors General on Integrity and Efficiency. Our independent auditors found PBGC’s information security program to be effective with the six function areas assessed at Managed and Measurable. KPMG issued four recommendations to address weaknesses identified with PBGC’s risk and asset management and contingency planning programs.

Click here for the full report.

Fiscal Year 2025 Pension Benefit Guaranty Corporation Federal Information Security Modernization Act of 2014 (FISMA) Independent Performance Audit (AUD-2025-12), issued September 30, 2025

Additional Information & Resources