Date Issued
Report Number
2023-20-013
Report Type
Audit
Joint Report
No
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
Recommendations
The Chief Information Officer should ensure that applicable monitoring is performed to provide adequate oversight of the Treasury-hosted BEARS servers.
The Chief Information Officer should ensure that POA&Ms or risk-based decisions are timely and accurately documented for vulnerabilities that exceed remediation timeframes for the BEARS servers.