Audit of Governance and Protection of Department of Defense Artificial Intelligence Data and Technology

Date Issued

Monday, June 29, 2020

Submitting OIG

Department of Defense OIG

Other Participating OIGs

Department of Defense OIG

Agencies Reviewed/Investigated

Department of Defense

Components

United States Navy (USN)

United States Marine Corps (USMC)

United States Army (USA)

United States Air Force (USAF)

OSD Chief Information Officer (CIO)

Defense Threat Reduction Agency (DTRA)

Report Number

DODIG-2020-098

Report Type

Audit

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Open Recommendations

This report has 3 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use
D-2020-0098-D000CR-0002-0001.B1a2	No	$0	$0
Rec B.1.a: The DoD OIG recommended that the Chief Information Officers for the Army, Marine Corps, Navy, and Air Force develop and implement a plan to correct the weaknesses identified at facilities that manage artificial intelligence projects related to enforcing the use of multifactor authentication and strong passwords, when necessary, to reduce the risk of disclosing sensitive DoD information.
D-2020-0098-D000CR-0002-0001.B1b2	No	$0	$0
Rec. B.1.b: The DoD OIG recommended that the Chief Information Officers for the Army, Marine Corps, Navy, and Air Force develop and implement a plan to correct the weaknesses identified at facilities that manage artificial intelligence projects related to regularly monitoring networks and systems to identify unusual user and system activity.
D-2020-0098-D000CR-0002-0001.B1e2	No	$0	$0
Rec. B.1.e: The DoD OIG recommended that the Chief Information Officers for the Army, Marine Corps, Navy, and Air Force develop and implement a plan to correct the weaknesses identified at facilities that manage artificial intelligence projects related to securing data centers, server racks, and associated keys.