{"id":267651,"date":"2026-06-08T14:11:00","date_gmt":"2026-06-08T18:11:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/08\/oig-reports-declining-cybersecurity-maturity-ratings-at-the-fed-and-the-cfpb-orrick-herrington-sutcliffe-llp\/"},"modified":"2026-06-08T15:25:10","modified_gmt":"2026-06-08T19:25:10","slug":"oig-reports-declining-cybersecurity-maturity-ratings-at-the-fed-and-the-cfpb-orrick-herrington-sutcliffe-llp","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/08\/oig-reports-declining-cybersecurity-maturity-ratings-at-the-fed-and-the-cfpb-orrick-herrington-sutcliffe-llp\/","title":{"rendered":"OIG reports declining cybersecurity maturity ratings at the Fed and the CFPB | Orrick, Herrington &#038; Sutcliffe LLP"},"content":{"rendered":"<p><a href=\"https:\/\/www.jdsupra.com\/legalnews\/oig-reports-declining-cybersecurity-1377609\/\">OIG reports declining cybersecurity maturity ratings at the Fed and the CFPB | Orrick, Herrington &#038; Sutcliffe LLP<\/a><\/p>\n<p><a href=\"https:\/\/www.jdsupra.com\/legalnews\/oig-reports-declining-cybersecurity-1377609\/\">https:\/\/www.jdsupra.com\/legalnews\/oig-reports-declining-cybersecurity-1377609\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-08 14:11:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.jdsupra.com\">www.jdsupra.com<\/a><\/p>\n<p>The Fed and CFPB\u2019s OIG recently released its semiannual report to Congress, covering the period from October 1, 2025, to March 31, 2026. The OIG found that the information security programs at both agencies are \u201cno longer effective.\u201d According to the report, the Fed\u2019s program dropped from a level-4 maturity rating (\u201cmanaged and measurable\u201d) to level-3 (\u201cconsistently implemented\u201d), due in part to purported issues with mobile device security and the protection of confidential supervisory information. The CFPB\u2019s program fell two levels to a level-2 maturity rating (\u201cdefined\u201d), with the OIG citing problems related to authorizations, continuous monitoring, and outdated software. The OIG issued multiple recommendations to each agency to address these deficiencies.<\/p>\n<p>The report also found that processing times for banking applications at the Fed increased across all application types between 2021 and 2024, rising approximately 11 percent overall and roughly 40 percent for small community bank mergers and acquisitions, despite the launch of \u201cFedEZFile\u201d in 2022 as a filing and tracking tool to streamline the applications process. The report recommended that the Fed document key internal milestones and strengthen its monitoring capabilities to improve efficiency. The OIG also identified concerns regarding access to confidential supervisory information in the Fed\u2019s \u201cOASIS\u201d platform, finding that users have broader access to sensitive data than warranted by their examination assignments. Finally, the OIG reported that its investigative office produced 6 arrests, 13 indictments, 20 convictions, and approximately $171.6 million in \u201ccivil judgments, forfeiture, criminal fines, restitution, and special assessments\u201d during the reporting period.<\/p>\n<p>[View source.]<\/p>\n<p><a href=\"https:\/\/www.jdsupra.com\/legalnews\/oig-reports-declining-cybersecurity-1377609\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>OIG reports declining cybersecurity maturity ratings at the Fed and the CFPB | Orrick, Herrington&#8230;<\/p>\n","protected":false},"author":1,"featured_media":267652,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/jdsupra-static.s3.amazonaws.com\/profile-images\/og.13091_35.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[57],"class_list":["post-267651","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-security"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/267651"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=267651"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/267651\/revisions"}],"predecessor-version":[{"id":267654,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/267651\/revisions\/267654"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/267652"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=267651"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=267651"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=267651"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}