About Us | Contact Us
View Cart

The FDIC Audit is In! The FDIC Audit is In!

By Dan Hadaway | Tuesday, July 22, 2014 - Leave a Comment

FDIC Audit reveals “familiar” weaknesses

In 2013, the FDIC was audited by the General Accounting Office, an annual practice since 2011, and the results are now in.  If you are an FDIC bank, you may want to file these results in your vendor management program, and maybe perform a risk assessment on them.

What we find interesting about the report is that there are findings from 2011 which have still not been fully mitigated.  We totally understand this phenomenon, and are glad maybe some FDIC examiners will be able to empathize.

Beyond that, according to the report, the cause of the FDIC’s weaknesses stem from the fact that the FDIC did not:

  • fully document and implement information security controls;
  • ensure that employees and contractors received security awareness training;
  • conduct ongoing assessments of security controls for all systems; and
  • remediate agency identified weaknesses in a timely manner.

Sound familiar?

These weaknesses individually or collectively do not constitute either a material weakness or a significant deficiency for financial reporting purposes.  Nevertheless, unless FDIC takes further steps to mitigate these weaknesses, the corporation’s sensitive financial information and resources will remain exposed to unnecessary risk of inadvertent or deliberate misuse, improper modification, unauthorized disclosure, or destruction.

For the actual, report, go here!

Original article by Dan Hadaway.

Latest News
      Alternatives From 2020 Conferences The 2020 Update Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Each year as we go to various conferences throughout the Midwest ranging in scope; from small banker conferences that Dan himself moderates, to hacker conferences like Defcon.  We […]
    Another awareness poster for YOUR customers (and users).  Now that we have our own employees aware, maybe it’s time to start posting content for our customers! Download the large versions here: Awareness Poster (Portrait) Awareness Poster (Landscape)   You are welcome to print out and distribute this around your office.  
    The IBA Presents an infotex Workshop: Tech-Shop (A Virtual Workshop for Banks IT Geeks) Live Workshop Time for a workshop for the technical side of the community-bank. Time for a workshop full of command lines and configurations, acronyms we are forbidden to use around management, and even dark-web jokes. Time for a workshop where we […]
    An Analogy… …About Taking Better Notes Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . An interesting set of metaphors arose out of our efforts to improve our time management practices at infotex.  In the spirit of sound strategic planning, we as a team decided […]
    A Webinar-Movie In our current world of uncertainty there is at least one thing that is certain. Business needs to continue, and that means that it is important for managers to be able to meet with their team even if everyone is working remotely at this point. In this Webinar-Movie, Dan will compare virtual meeting […]