Department of Education

We concluded that the Department had developed and implemented control activities that provided reasonable assurance that States submitted reliable Perkins IV program performance data to the Department. We also reported that the Department had developed and implemented control activities that...

We found that the Tennessee Department of Education did not ensure that the Achievement School District developed and implemented adequate internal control activities over retaining documentation, contracting, approving purchases, using credit cards, recording adjusting journal entries, and...

We found that FSA does not have sufficient oversight of IT projects to provide assurance that its Lifecycle Management Methodology process is appropriately implemented. FSA does not have an accountability mechanism and, as a result, it did not always conduct required technical and management reviews...

We found that the Department did not comply with the Improper Payments Elimination and Recovery Act because its FY 2015 improper payment rate did not meet the reduction target for the William D. Ford Federal Direct Loan (Direct Loan) program. The Department established an FY 2015 reduction target of...

During the course of our fieldwork, we learned of two FSA initiatives that pertain to identifying and addressing misrepresentation by schools. FSA is in the process of implementing a new student complaints tracking system, called Enterprise, and a Student Aid Enforcement Unit. One of the four...

For the time period reviewed, we found that the Pennsylvania Department of Labor and Industry, Office of Vocational Rehabilitation (Pennsylvania) had adequate internal controls to provide reasonable assurance that the data it reported in its Case Services Report (RSA-911) were complete, but it did...

For the time period reviewed, we determined that the Opportunities for Ohioans with Disabilities (Ohio) had adequate internal controls to ensure that the data it reported to the Rehabilitation Services Administration (RSA) were complete; however, it did not have adequate internal controls to ensure...

Our audit found that the Oregon Department of Education (Oregon) Consolidated Collection System, Oregon’s Statewide Longitudinal Data System, had a lack of documented internal controls in the system that increases the risk that Oregon will be unable to prevent or detectunauthorized access and...

We identified internal control weaknesses in the system that increase the risk that Virginia will be unable to prevent or detect unauthorized access and disclosure of personally identifiable information. Specifically, we found that although Virginia classified the Single Sign-on Web System as a...

We reported that FSA did not always accurately assess the operational status of the fully or partially operational functions, processes, and subprocesses. We also noted that FSA did not sufficiently document its validation assessments. As a result, there was a risk that FSA did not accurately assess...