Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it's official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you're on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Review of HHS's Compliance with the Federal Information Security Modernization Act of 2014 (FISMA)

The Federal Information Security Modernization Act (FISMA) and OMB Circular A-130, "Managing Information as a Strategic Resource," require that agencies and their contractors maintain programs that provide adequate security for all information collected, processed, transmitted, stored, or disseminated in general support systems and major applications. FISMA requires the Inspectors General to conduct an annual independent evaluation to determine the effectiveness of the information security program and practices of its agency. We will review HHS's and selected HHS operating divisions' compliance with FISMA.

Announced or Revised Agency Title Component Report Number(s) Expected Issue Date (FY)
July 2023 Office of the Secretary Review of HHS's Compliance with the Federal Information Security Modernization Act of 2014 (FISMA) Office of Audit Services W-00-23-42001 2024