Skip to main content
Stay Informed
of New Reports
Twitter
Where To Report Waste
Fraud, Abuse, Or Retaliation
Where To Report Waste Fraud, Abuse, Or Retaliation
Advanced Search
Search form
Search
Reports
OIG Reports
State/Local Homepage
State and Local Reports
Recommendations
Investigations
Investigative Press Releases
Disaster Oversight
IG Vacancies
About
Inspector General Open Recommendations
09/25/2023
-
Peace Corps
Review of the Peace Corps' Security Program
[Report Details]
Review
-
Open Recommendations
7
The Peace Corps complete and fully implement an identity credential and access management program.
6
The Peace Corps improve its vulnerability and patch management processes by consistent and timely remediation of critical and high vulnerabilities as well as patching.
5
The Peace Corps consistently improve and implement its inventory management process to ensure information system, hardware, and software inventories are accurate, complete, and up to date.
4
The Peace Corps improve its incident response process to ensure incidents are properly defined, promptly identified, and effectively remediated.
3
The Peace Corps further define and implement the ERM program to ensure information security risks are communicated and monitored at the system, business process, and entity levels.
2
The Peace Corps include the CISO at the ERM Council meetings to provide insights on cybersecurity risks.
1
The Peace Corps develops a strategy and structure that integrates information security into the agency’s business operations. This should include an established responsibility for assessing information security risks in all agency programs and operations and providing this analysis to senior leadership, including the ERM Council, for decision-making.
09/22/2023
-
Department of Veterans Affairs
VA’s Compliance with the VA Transparency & Trust Act of 2021 Semiannual Report: September 2023
[Report Details]
Review
-
Open Recommendations
01
VA’s assistant secretary for management and chief financial officer ensure that Veterans Health Administration fiscal staff are trained on VA financial policy requirements for the preparation and approval of journal vouchers (including expenditure transfers).
09/22/2023
-
Small Business Administration
SBA's Corrective Actions to Improve Oversight of the SCORE Association
[Report Details]
Inspection / Evaluation
-
Open Recommendations
10
Implement procedures to review and reconcile SCORE’s achievements reported in its quarterly performance reports to the performance results in the Entrepreneurial Development Management Information System (EDMIS) to ensure performance results are accurate and complete.
09/22/2023
-
Small Business Administration
SBA’s Reporting of Loan Data to a Commercial Credit Reporting Agency
[Report Details]
Audit
-
Open Recommendations
3
Establish a written agreement for reporting loan data with Experian and other major commercial credit reporting agencies, as applicable.
2
Establish communication protocols with Experian to address, resolve, and monitor commercial credit reporting issues.
1
Coordinate with Experian to ensure SBA commercial loan data is reported in a manner that can be included in the credit reporting agency’s commercial credit files.
09/21/2023
-
Department of Veterans Affairs
Information Security Inspection at the VA Beckley Healthcare System in West Virginia
[Report Details]
Inspection / Evaluation
-
Open Recommendations
10
The VA medical center director implement media sanitization methods in accordance with VA policy requirements.
09
The VA medical center director validate that appropriate physical and environmental security measures are implemented and functioning as intended.
08
The VA medical center director ensure that hot and cold aisles in computer rooms, and electric and data cables are installed in accordance with VA standards.
07
The VA medical center director install uninterruptible power supplies to eliminate single points of electrical failure supporting the facility.
04
The assistant secretary for information and technology and chief information officer include system personnel during the security categorization process to ensure that all necessary information types are considered when determining the security categorization for special-purpose systems.
03
The assistant secretary for information and technology and chief information officer develop and approve an authorization to operate for the special-purpose system.
02
The assistant secretary for information and technology and chief information officer improve vulnerability management processes to ensure system changes occur within organization timelines.
09/21/2023
-
Export-Import Bank
Audit of EXIM's Domestic and International Non-Sponsored Travel
[Report Details]
Audit
-
Open Recommendations
4
Develop and implement a process to communicate travel policy and requirement updates to staff in a periodic manner.
Pages
1
2
3
4
5
6
7
8
9
…
next ›
last »