GAO issued its annual audit report in connection with its requirement to audit the financial statements of the Federal Reserve Banks. The report notes a total of 12 information security control deficiencies related to entitywide security program planning and management, access control and system software. GAO says its findings “warrant management’s attention and action to limit the risk of unauthorized access, disclosure, loss or impairment” of critical operations. The Federal Deposit Insurance Corporation (FDIC) was recently cited for similar information controls that need to be fixed.”]
Source: https://www.govinfosecurity.com/federal-reserve-banks-cited-for-security-deficiencies-a-887