U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Audit of Security Controls for the FDIC's Cloud Computing Environment

View Summary Announcement

Report Information

Publish Date
Report sub-type
Audit Report
Report Number
AUD-24-01

Unimplemented Recommendations

Remediate the 7 findings and 19 associated recommendations identified in Cloud Platform #1 and the applications built on Cloud Platform #1

Remediate the 8 findings and 11 associated recommendations identified in Cloud Platform #2 and the applications built on Cloud Platform #2

Remediate the 4 findings and 5 associated recommendations identified in the applications built on Cloud Platform #3

Remediate the 3 findings and 6 associated recommendations identified in Cloud Platform #4

Remediate the 4 findings and 7 associated recommendations identified in Cloud Platform #5.

This recommendation is redacted.

Design and implement a plan to prevent, detect, and remediate security weaknesses on FDIC cloud platforms and applications related to insecure coding practices, misconfigured security settings, least privilege violations, outdated software versions, and ineffective monitoring.