As required by the Federal Information Security Modernization Act of 2014 (FISMA), OIG is initiating its FY 2017 audit of the Department's information security program and practices.