Tennessee Valley Authority OIG

Patching is the process for updating products and systems. Patches correct security and functionality problems in software and firmware. We performed an audit of the Tennessee Valley Authority’s (TVA) patching of Windows® desktops and laptops to determine if high-risk vulnerabilities on desktops and...

We performed an audit of the Tennessee Valley Authority’s (TVA) management of privileged accounts. Our objective was to determine if TVA's management of privileged accounts is following TVA policy and best practices. A privileged user has an account that is authorized for the performance of security...

The Office of the Inspector General conducted a review of the Transmission Field Operations, North Maintenance organization to identify factors that could impact its organizational effectiveness. During the course of our evaluation, we identified behaviors that had a positive impact on Transmission...

We found several areas of the privacy program to be generally effective, including (1) completion of privacy impact assessments, (2) privacy related training taken by network users, (3) privacy considerations during the authority to operate process, (4) system categorization, (5) privacy incident...

The Office of the Inspector General determined the Tennessee Valley Authority’s (TVA) industrial hygiene (IH) planning and assessment process had weaknesses that resulted in some hazards not being identified and evaluated. Specifically, we identified the following IH process weaknesses: (1) TVA...

The Office of the Inspector General included an audit of contractor use of TVA’s purchasing cards in its fiscal year 2021 Audit Plan, based on the significant amount of charges made using TVA purchasing cards assigned to contractors. The objective of the audit was to determine if adequate controls...

The Office of the Inspector General determined the Tennessee Valley Authority’s (TVA) industrial hygiene (IH) planning and assessment process had weaknesses that resulted in some hazards not being identified and evaluated. Specifically, we identified the following IH process weaknesses: (1) TVA...

The Office of the Inspector General included an audit of TVA’s Federal Sustainability Report and Implementation Plan (SRIP) in its FY 2021 Audit Plan, based on the reputational risk of disseminating inaccurate information to the public. The objective of the audit was to determine if information in...

The Office of the Inspector General conducted a review of the Generation Services, Field Services organization to identify factors that could impact Field Services' organizational effectiveness. During the course of our evaluation, we identified many positive behaviors for engagement; however, we...