Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock
()
or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
OIG recommends that the Director move the chief information security officer position and staff to a new office that is independent from the chief information officer. These two separate offices should both report to the same senior executive.
OIG recommends that the Director appoint the chief information security officer to serve on the Enterprise Risk Management Council as a voting member.
OIG recommends that Peace Corps management enhance the communications protocols with different offices to ensure roles and responsibilities are clearly communicated and risks are consistently identified and communicated from system, business process, and entity levels.
OIG recommends that Peace Corps management add an IT security performance element to the annual performance plans for all staff members who have a role with IT security. This should include all system owners and staff members who have roles and responsibilities in managing and protecting Peace Corps sensitive data and information systems.