The Office of Inspector General for the CFPB has found that the bureau has moved to secure the Data Team Complaint Database, which supports the CFPB’s Consumer Response System (CRS) through which it handles consumer complaints. However, there are several control deficiencies that need to be remedied. “Overall, we found that the CFPB has taken steps to secure the DT Complaint Database in accordance with the Federal Information Security Management Act and the agency’s information security policies and procedures,” the report began. For example, the CFPB has deployed network-level firewalls and intrusion detection systems for the DT Complaint Database. “However, we identified several control deficiencies related to configuration management, access control, and audit logging and review,” the report added. “Specifically, ...