ig_recommendations
Data license: Public Domain (U.S. Government data) · Data source: Federal Register API & Regulations.gov API
7 rows where report_id = "2024-audit-boards-information-security-program"
This data as json, CSV (advanced)
Suggested facets: significant
| Link | rowid ▼ | report_id | rec_number | significant | text | questioned_costs | funds_for_better_use |
|---|---|---|---|---|---|---|---|
| 18 | 18 | 2024 Audit of the Board's Information Security Program 2024-audit-boards-information-security-program | 1 | Yes | Develop a supply chain risk management strategy that includes (a) a supply chain risk appetite and tolerance, (b) an enterprise supply chain risk management governance structure, and (c) supply chain risk assessment processes that include migration strategies or controls. | 0 | 0 |
| 19 | 19 | 2024 Audit of the Board's Information Security Program 2024-audit-boards-information-security-program | 2 | No | Document and implement a baseline review and escalation process for data loss prevention alerts. | 0 | 0 |
| 20 | 20 | 2024 Audit of the Board's Information Security Program 2024-audit-boards-information-security-program | 3 | No | Reinforce the requirements for identifying and documenting system interconnections as part of the Board’s training on its cyber risk management application and require all relevant individuals to take the training. | 0 | 0 |
| 21 | 21 | 2024 Audit of the Board's Information Security Program 2024-audit-boards-information-security-program | 4 | No | Evaluate and implement options to enforce the agency’s existing guidance related to identifying and documenting system interconnections. | 0 | 0 |
| 22 | 22 | 2024 Audit of the Board's Information Security Program 2024-audit-boards-information-security-program | 5 | No | Develop and implement a mobile application scanning program that includes a vulnerability scanning solution and process to identify and remediate vulnerabilities. | 0 | 0 |
| 23 | 23 | 2024 Audit of the Board's Information Security Program 2024-audit-boards-information-security-program | 6 | No | Ensure that the Board’s Incident Notification and Breach Response Plan is reviewed, tested and approved annually. | 0 | 0 |
| 24 | 24 | 2024 Audit of the Board's Information Security Program 2024-audit-boards-information-security-program | 8 | No | Incorporate targeted phishing exercises into the Board’s security awareness and training program and processes. | 0 | 0 |
Advanced export
JSON shape: default, array, newline-delimited
CREATE TABLE ig_recommendations (
report_id TEXT REFERENCES ig_reports(report_id),
rec_number TEXT,
significant TEXT,
text TEXT,
questioned_costs INTEGER DEFAULT 0,
funds_for_better_use INTEGER DEFAULT 0
);
CREATE INDEX idx_ig_rec_report ON ig_recommendations(report_id);
CREATE INDEX idx_ig_rec_sig ON ig_recommendations(significant);