Fiscal Year 2015 Federal Information Security Modernization Act Final Report (EVAL 2016-7 / FA-15-108-7), issued February 19, 2016
This narrative report is a follow-up to our FY 2015 Federal Information Security Modernization Act (FISMA submission) to OMB FA-15-108-4 (link to report) to provide findings and recommendations related to PBGC's information security program.
PBGC made significant progress in addressing the security weaknesses noted in prior years. Prior year information security material weaknesses have been downgraded to significant deficiencies in the FY 2015 financial statement internal control report; however, much work remains to continue progress in correcting these deficiencies. We are reporting fifteen FISMA findings with twenty-five (25) recommendations for FY 2015 based on the results of our FY 2015 independent evaluation. In addition to those in this report, there were nine (9) FISMA-related recommendations reported in the Corporation’s FY 2015 internal control report FA-15-108-3 (link to report).