| D-2024-0087-D000CU-0001-0001.A1 |
No |
$0 |
$0 |
|
|
(U) Rec. A.1: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Officer, in coordination with the Washington Headquarters Services Director, develop, resource, and implement a records management program that includes records management training for all personnel in accordance with Federal and DoD records management requirements.
|
| D-2024-0087-D000CU-0001-0002.A2 |
No |
$0 |
$0 |
|
|
(U) Rec. A.2: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Officer implement a formal after?action review process to determine the success and effectiveness of the Defense Digital Services' engagements.
|
| D-2024-0087-D000CU-0001-0003.A3 |
No |
$0 |
$0 |
|
|
(U) Rec. A.3: The DoD OIG recommended that the Washington Headquarters Services Director ensure that each head of a Washington Headquarters Services?serviced Component has established and resourced a records and information management program within their organization in accordance with DoD policies.
|
| D-2024-0087-D000CU-0002-0001.B1a |
No |
$0 |
$0 |
|
|
(U) Rec. B.1.a: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Office Chief Information Officer and Authorizing Official, in coordination with the Defense Information Systems Agency Chief Information Officer, assess the hardware, software, cloud services, networks, and any other tools used by the Defense Digital Service since 2015 to determine whether the hardware, software, cloud services, and other tools are necessary to meet the mission requirements of the Defense Digital Service;
|
| D-2024-0087-D000CU-0002-0001.B1b |
No |
$0 |
$0 |
|
|
(U) Rec. B.1.b: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Office Chief Information Officer and Authorizing Official, in coordination with the Defense Information Systems Agency Chief Information Officer, assess the hardware, software, cloud services, networks, and any other tools used by the Defense Digital Service since 2015 to determine whether the hardware, software, cloud services, and other tools are approved for use by the DoD.
|
| D-2024-0087-D000CU-0002-0001.B1c |
No |
$0 |
$0 |
|
|
(U) Rec. B.1.c: This recommendation is Controlled Unclassified Information
|
| D-2024-0087-D000CU-0002-0001.B1d |
No |
$0 |
$0 |
|
|
(U) Rec. B.1.d: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Office Chief Information Officer and Authorizing Official, in coordination with the Defense Information Systems Agency Chief Information Officer, assess the hardware, software, cloud services, networks, and any other tools used by the Defense Digital Service since 2015 to determine whether the hardware, software, cloud services, and other tools were acquired under terms that ensure that the DoD retains ownership of DoD data.
|
| D-2024-0087-D000CU-0002-0002.B2a |
No |
$0 |
$0 |
|
|
(U) Rec. B.2.a: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Office Chief Information Officer and Authorizing Official, in coordination with the Defense Information Systems Agency Chief Information Officer, conduct a risk assessment of the DoD data stored, processed, or transmitted by the hardware, software, cloud services, networks, and any other tools used by the Defense Digital Service to determine the DoD Component owner, the nature, and classification of the data.
|
| D-2024-0087-D000CU-0002-0002.B2b |
No |
$0 |
$0 |
|
|
(U) Rec. B.2.b: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Office Chief Information Officer and Authorizing Official, in coordination with the Defense Information Systems Agency Chief Information Officer, conduct a risk assessment of the DoD data stored, processed, or transmitted by the hardware, software, cloud services, networks, and any other tools used by the Defense Digital Service to determine whether the DoD data were and are appropriately protected in accordance with DoD cybersecurity and cloud security policies.
|
| D-2024-0087-D000CU-0002-0002.B2c |
No |
$0 |
$0 |
|
|
(U) Rec. B.2.c: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Office Chief Information Officer and Authorizing Official, in coordination with the Defense Information Systems Agency Chief Information Officer, conduct a risk assessment of the DoD data stored, processed, or transmitted by the hardware, software, cloud services, networks, and any other tools used by the Defense Digital Service to determine whether any DoD data were spilled, compromised, or potentially compromised, and if so, immediately initiate mitigating and remedial actions to protect DoD information, including personally identifiable information, in accordance with DoD policies.
|
| D-2024-0087-D000CU-0002-0003.B3 |
No |
$0 |
$0 |
|
|
(U) Rec. B.3: The DoD OIG recommended that after completion of Recommendations B.1 and B.2, the Chief Digital and Artificial Intelligence Officer develop and implement a plan of actions and milestones to bring any out-of-compliance hardware, software, cloud services, networks, and other tools used by the Defense Digital Service and other Office of the Chief Digital and Artificial Intelligence Office Components into compliance with DoD policies.
|
| D-2024-0087-D000CU-0002-0004.B4a |
No |
$0 |
$0 |
|
|
(U) Rec. B.4.a: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Officer develop and implement a formal process for all Chief Digital and Artificial Intelligence Office directorates to follow when requesting waivers of DoD policies and guidance that, at a minimum, requires documentation of the request, justification for the request, and the approval or denial from the policy's issuing DoD Component.
|
| D-2024-0087-D000CU-0002-0004.B4b |
No |
$0 |
$0 |
|
|
(U) Rec. B.4.b: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Officer develop and implement a formal process for all Chief Digital and Artificial Intelligence Office directorates to follow when requesting waivers of DoD policies and guidance that, at a minimum, requires documentation of the Office of the Secretary of Defense's approval and notification in writing to the policy's issuing DoD Component of the approval of the waiver, if the Office of the Secretary of Defense overrides the denial of the waiver by the Office of the Secretary of Defense Principal Staff Assistant or DoD Component head who issued the policy.
|
| D-2024-0087-D000CU-0002-0004.B4c |
No |
$0 |
$0 |
|
|
(U) Rec. B.4.c: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Officer develop and implement a formal process for all Chief Digital and Artificial Intelligence Office directorates to follow when requesting waivers of DoD policies and guidance that, at a minimum, requires maintenance of the documentation created as a result of the implementation of Recommendations B.1.a and B.1.b in accordance with Federal and DoD records management requirements.
|
| D-2024-0087-D000CU-0002-0005.B5 |
No |
$0 |
$0 |
|
|
(U) Rec. B.5: The DoD OIG recommended that the Chief Digital and Artificial Intelligence Officer implement Recommendations B.1, B.2, and B.3 for all the Chief Digital and Artificial Intelligence Office directorates.
|
