Inspector General Open Recommendations
12/01/2022 - Consumer Product Safety Commission Report of Investigation into Irregularities in the FY 2022 Operating Plan Vote Investigation - Open Recommendations
The Commissioners should then determine whether the Decision Making Procedures should be published in order to ensure transparency when conducting Commission business. In the Report of Investigation into Irregularities in the FY 2022 Operating Plan Vote 14 alternative, if the decision is made to not publish them, the rationale for this decision should be recorded.
12/01/2022 - U.S. Agency for International Development Examination of Incurred Costs Claimed on Flexibly Priced Contracts by Creative Associates International, Inc. for the Fiscal Year Ended September 30, 2018 Other - Open Recommendations
11/30/2022 - Open Recommendations
We recommend the Assistant Administrator, Human Capital, continue to coordinate efforts with Security Operations to implement actions that facilitate improvements in the hiring process to ensure applicants are informed of the Transportation Security Officer duties and that TSA continues to hire qualified applicants. At a minimum, TSA should: a. require an applicant affirm whether he/she has reviewed the Transportation Security Officer Realistic Job Preview video and understands duties include interacting with passengers, passenger pat-downs, shift work, weekend work, and holidays. If the applicant has not, ensure the applicant reviews the video as part of the application process; and b. finalize the implementation of the agency's job compatibility assessment tool for use during the hiring process.
09/09/2021 - Department of Homeland Security CISA Can Improve Efforts to Ensure Dam Security and Resilience Audit - Open Recommendations
We recommend the Director, Cybersecurity and Infrastructure Security Agency: Develop and implement a strategy for Dams Sector stakeholders to use the HSIN-CI Dams Portal to its fullest potential. CISA should develop metrics on usage, performance, and training needs; update the HSIN-CI Dams Portal with clear instructions; and encourage sharing of lessons learned, after action reports, and best practices among stakeholders.
We recommend the Director, Cybersecurity and Infrastructure Security Agency: Strengthen coordination with FEMA by establishing Memorandums of Understanding, Interagency Agreements, or other documented strategies to formally define CISA's and FEMA's roles and responsibilities for information sharing and analytical collaboration for grant decision-making related to safety, security, and resilience of dams, as well as the use and applicability of numerical simulation models, flood inundation tools, and supporting geospatial mapping capabilities to support emergency preparedness and incident response.
We recommend the Director, Cybersecurity and Infrastructure Security Agency: Establish policies, procedures, and performance metrics to help ensure CISA divisions consistently assess the impact of all programs and activities relating to CISA's role as the Sector-Specific Agency for the Dams Sector, and that CISA assess their effectiveness in the role of Sector-Specific Agency for the Dams Sector.
We recommend the Director, Cybersecurity and Infrastructure Security Agency: Formalize CISA's organizational structure to clarify roles, responsibilities, coordination processes, and reporting procedures across all divisions performing activities relating to CISA's role as the Sector-Specific Agency for the Dams Sector.
11/30/2022 - Smithsonian Institution Information Security: Report on the Effectiveness of the Smithsonian Privacy Program and Practices, Fiscal Year 2022 Audit - Open Recommendations
Develop and implement a formal process to identify, document, and periodically test, security controls for all systems (major or minor) that collect, process, store, or transmit sensitive personally identifiable information. Where systems processing sensitive PII are considered minor, documentation should clearly identify what controls are being inherited from other systems and what controls are specific to the system.
11/29/2022 - Peace Corps Audit Report: The Peace Corps’ Management of Payroll and Benefits for U.S. Direct Hires Audit - Open Recommendations