Summary
The Federal Reserve must strengthen defenses around its sensitive economic information, the central bank's Office of Inspector General (OIG) concluded in a report released Thursday. The watchdog found shortcomings in the Fed's risk management systems, procedures to identify critical assets and insider risks, and in training and information sharing practices. The report included nine recommendations for remediation and was published one day after a former senior Fed adviser received a prison sentence related to false statements about sharing monetary policy information.
Report findings
The OIG's review determined that the Fed's existing risk management systems are not adequately flagging threats to proprietary data and information. Specifically, the watchdog pointed to an absence of formal procedures to identify which assets are critical and to assess the potential for insider risks.
In addition, the report found the Board lacks sufficient training and does not have effective information sharing processes in place to protect its sensitive data. The inspector general highlighted that the Board's proprietary economic information draws notable interest from foreign adversaries aiming to harm U.S. competitiveness and national security.
The watchdog also noted that risks can originate from within the organization. An employee could disclose sensitive information to foreign operatives, whether intentionally or accidentally, the report stated.
Recommendations and timing
To address the vulnerabilities it identified, the inspector general put forward nine recommendations. Among these are approaches to define the Board's critical assets and to evaluate associated risks. The report's release came one day after the sentencing of John Harold Rogers, 64, a former senior Fed adviser, who received more than three years in prison.
Rogers was convicted on February 3 of making false statements to investigators about sharing information on monetary policy. He was acquitted on a separate charge of conspiracy to commit economic espionage.
Contextual notes
The OIG framed its findings in terms of both external threats from foreign adversaries and internal vulnerabilities related to employee conduct. The recommendations are aimed at improving the Fed's capacity to identify and protect its most sensitive economic data and to strengthen training and communication protocols.
Key points
- The OIG found that the Fed's risk management systems fail to identify threats to proprietary economic information.
- The Board lacks procedures to define critical assets and to assess insider risks, and it does not have adequate training or information sharing mechanisms.
- The watchdog released nine recommendations to better protect the Fed's sensitive data; the report was published one day after a former senior adviser was sentenced in a related criminal case.
Risks and uncertainties
- Foreign adversaries are identified as actively interested in the Fed's proprietary economic information, posing risks to U.S. competitiveness and national security - sectors tied to macroeconomic policymaking and national security are implicated.
- Insider threats remain a concern, as employees may share sensitive information intentionally or unintentionally, affecting trust in institutional confidentiality and potentially influencing markets reliant on timely policy information.
Note: This article reports on the OIG's findings and the related sentencing; it does not include new factual claims beyond the information presented in the report and the court outcome.