Department of Commerce

For our final report on our evaluation of the Office of the Secretary’s (OS’) incident response program, our objective was to assess the adequacy of actions taken by the U.S. Department of Commerce (the Department) and its bureaus when detecting and responding to cyber incidents in accordance with...

Our audit objective was to identify SWFO program challenges that may affect cost, schedule, or overall mission performance and assess the extent to which NOAA is addressing them. To satisfy our objective, we reviewed the SWFO program acquisition strategy, identified challenges in key program...

Our objective was to determine the adequacy of National Institute of Standards and Technology's (NIST’s) oversight of MEP to ensure requirements are met. We found that NIST’s inadequate oversight of Hollings Manufacturing Extension Partnership has led to inefficient use of financial resources and...

Our objective was to identify the remaining Department Active Directories, which have not been reviewed by the Office of Inspector General (OIG), and summarize past OIG work related to the management of Active Directories. We found that a lack of adequate Active Directory security reviews caused...

For our final report on our audit of the First Responder Network Authority’s (FirstNet Authority’s) oversight of its first two reinvestment task orders (TOs), our objective was to determine whether FirstNet Authority’s process for reinvesting fee payments is effective and consistent with established...

For our final report on our evaluation of the U.S. Census Bureau’s (the Bureau’s) award and use of a cooperative agreement to participate in a joint statistical project with Research Triangle Institute (RTI), an independent nonprofit institution, our objective was to determine whether the...

The objectives of our evaluation were to determine (1) the mission, legal basis, and authority for such functions and whether relevant statutes and guidelines are satisfied, (2) whether the Bureau of Industry and Security (BIS) law enforcement function developed plans and policies for oversight of...

For our final report on our audit of First Responder Network Authority’s (FirstNet Authority’s) process for identifying, developing, and selecting reinvestment opportunities to construct, maintain, operate, and improve the Nationwide Public Safety Broadband Network, our audit objective was to...

This report summarizes work that we initiated and completed during this semiannual period on a number of critical Departmental activities. Over the past 6 months, our office issued 16 products related to our audit, evaluation, and inspection work. These products addressed programs and personnel...

For our evaluation of the U.S. Census Bureau's (the Bureau's) cybersecurity posture, our objective was to determine the effectiveness of the Bureau’scybersecurity posture against a simulated real-world attack. To do this, we conducted a covertcyber red team with six goals tailored to relevant risks...