Hydro Generation Cybersecurity Controls

Submitting OIG:

Report Description:

The Office of the Inspector General audited TVA’s Hydro Generation’s cybersecurity controls. We found TVA had (1) a potential single point of failure that could affect TVA’s ability to operate effectively in the event of a disaster, (2) not configured network devices in a consistent manner, and (3) not maintained updated network documentation. TVA management provided their planned actions to address the recommendations.

Date Issued:

Tuesday, September 24, 2019

Agency Reviewed / Investigated:

Tennessee Valley Authority

Submitting OIG-Specific Report Number:

2018-15530

Location(s):

Agency-Wide

Type of Report:

Audit

Questioned Costs:

Funds for Better Use:

Number of Recommendations:

View Document:

Attachment	Size
2018-15530.pdf	307.11 KB

Related Open Recommendations

No Recommendations found for this Report.

Tennessee Valley Authority OIG

Tennessee Valley Authority

Over the past 30 years, OIG reviews have focused on helping TVA improve the efficiency and effectiveness of TVA operations, save or recover money, and serve as a deterrent to misconduct and fraud. While the results from some reviews are diffcult to quantify, the results impacted many areas of TVA including: (1) improving key business processes; (2) improving governance functions and regulatory activities; (3) improving the protection of critical infrastructure and privacy information; and (4) improving the effectiveness of risk mitigation activities on areas of high risk. Even without a monetary value attached, these reviews provide information to help TVA operate in the most efficient manner and avoid losses from risks that are not properly mitigated. In addition, much of our reviews, primarily in the contract compliance audits and contract preaward reviews and certain investigations, have helped TVA recover and save substantial money.

http://oig.tva.gov/

Search form

Hydro Generation Cybersecurity Controls

Related Open Recommendations