We contracted with the independent certified public accounting firm of CliftonLarsonAllen LLP (CLA) to conduct an audit of the Overseas Private Investment Corporation’s (OPIC) information security program for fiscal year 2019, as required by the Federal Information Security Modernization Act of 2014 (FISMA). The audit firm concluded that OPIC generally implemented an effective information security program by implementing 58 of 71 selected security controls for selected information systems, but it also identified some weaknesses. We made four recommendations to further strengthen OPIC’s information security program.
Audit Report
Report Number
A-OPC-20-003-C
A-OPC-20-003-C.pdf407.29 KB