Another questions I have for all you IT managers out there. My agency is going through an acredidation process called a COA acredidation(Council on Acredidation). While I see it helping our agency, it doesn’t go into the technology side of things at all. Is there an acredidation of sorts for IT departments? If not, how do agencies audit their IT policies to see where the gaps/improvements are?