Enhanced Email and Web Security Compliance

The Office of the Inspector General audited TVA’s compliance with Office of Management and Budget’s (OMB) memorandum (M) 15-13, Policy to Require Secure Connections across Federal Websites and Web Services, and Department of Homeland Security’s (DHS) binding operational directive (BOD) 18-01, Enhance E mail and Web Security, regarding Web site and e-mail security practices. We determined that TVA was not in compliance with OMB M-15-13 and DHS BOD-18-01. In addition, we found TVA’s Web site inventory was incomplete. TVA management agreed with our findings and recommendations.