Federal Deposit Insurance Corporation
Office of Inspector General
Federal Deposit Insurance Corporation - Office of Inspector General

FDIC Office of Inspector General Ongoing Work

(Information as of September 25, 2020)

Office of Program Audits and Evaluations (PAE)

  • The FDIC’s Allocation and Retention of Safety and Soundness Examination Staff

The objectives are to determine whether:  (1) FDIC’s process for allocating examination staff and subject-matter experts to safety and soundness examinations was consistent with agency strategic goals, internal control standards, and best practices, and (2) FDIC’s activities for retaining safety and soundness examination staff and subject-matter experts were consistent with agency strategic goals, internal control standards, and best practices.

  • The FDIC’s Personnel Suitability and Security Program

The objective is to determine whether the FDIC has an effective program to: (1) complete preliminary suitability screening in a timely manner prior to an individual gaining systems access, (2) order and adjudicate background investigations commensurate with position risk designation and reciprocity rules, and (3) order re-investigations within required timeframes.

  • Evaluation of the FDIC's Termination of Bank Secrecy Act/Anti-Money Laundering Consent Orders

Our objective is to determine whether the FDIC's monitoring process and activities were sufficient to ensure Consent Order provisions were met before termination of the orders.

  • Blue Canopy

Our evaluation has two objectives to answer:  1. Did Blue Canopy perform Critical Functions as determined by OMB Policy Letter 11-01 and best practices?  2. If so, did the FDIC retain sufficient management oversight of Blue Canopy to maintain control of its mission and operations in accordance with best practices? 

  • CIGFO Project on Forward-Looking Guidance for Crisis Readiness

The Council of Inspectors General on Financial Oversight (CIGFO) has convened a working group to compile forward-looking guidance for the Financial Stability Oversight Council (FSOC) and its members to consider in preparing for crises.  Each participating OIG, including the FDIC OIG, will identify key lessons that will be of most use to FSOC and its members in preparing for and managing future crises.  These key lessons will be identified from the experiences of Federal agencies and the OIGs during prior crises as well as those learned during the recent pandemic. The resulting forward-looking guidance will be transmitted to FSOC upon completion of the work.


Office of Information Technology Audits and Cyber (ITC)

  • Mobile Device Security and Management

The audit objective is to determine if the FDIC has established and implemented effective controls to manage and secure its mobile devices.

  • The FDIC's Governance of its Mobile Device Management Solution

The audit objective is to assess the adequacy of the FDIC's governance over its mobile device management solution.

  • Receiving and Sharing Threat Information to Guide the FDIC's Supervisory Program

We plan to conduct two audits related to the sharing of threat information with FDIC examination staff and insured financial institutions.  The objective of the first audit is to determine whether the FDIC has established processes to receive relevant and actionable threat information and effectively monitor, analyze, disseminate, and use such threat information to guide its supervisory program.  This first audit is focusing on the sharing of threat information among FDIC personnel in the Headquarters, Regional, and Field Offices.   A second audit in the future will focus on how the FDIC ensures financial institutions receive and use relevant and actionable threat information.

  • Audit of Critical Building Services at FDIC-owned Buildings

The audit objective is to assess whether the FDIC has implemented effective controls to protect electrical power; heating, ventilation, and air conditioning (HVAC); and water services at its Virginia Square office buildings.

  • The FDIC's Information Security Program -- 2020 

The audit objective is to evaluate the effectiveness of the FDIC's information security program and practices. 

 

 

 

Print Print
Close