Open Recommendations
Recommendation Number | Significant Recommendation | Recommended Questioned Costs | Recommended Funds for Better Use | Additional Details | |
---|---|---|---|---|---|
D-2023-0052-D000CP-0001-0002.a | No | $0 | $0 | ||
(U) Rec. 2.a: The DoD OIG recommended that the Department of the Navy Chief Information Officer require that the authorizing official for the Navy Enterprise Resource Planning system, in coordination with the Department of the Navy Deputy Chief Information Officer for the Navy, reevaluate the authorization to operate, including a review of all required documentation to consider the risks associated with using the authorized commercial cloud service offering, such as the documentation supporting the Federal Risk and Authorization Management Program and the DoD authorization processes and continuous monitoring activities, as required by the DoD Cloud Computing Security Requirements Guide. | |||||
D-2023-0052-D000CP-0001-0003 | No | $0 | $0 | ||
(U) Rec. 3: The DoD OIG recommended that the Chief Information Officer for the Air Force require that the authorizing officials for the Tailored Multitenancy Integrated Service and Cloud One systems reevaluate the authorizations to operate, including a review of all required documentation to consider the risks associated with using the authorized commercial cloud service offering, such as the documentation supporting the Federal Risk and Authorization Management Program and DoD authorization processed and continuous monitoring activities, as required by the DoD Cloud Computing Security Requirements Guide. |