Security of Common Control Providers

View Report

Date Issued

Wednesday, August 28, 2024

Submitting OIG

Social Security Administration OIG

Other Participating OIGs

Social Security Administration OIG

Agencies Reviewed/Investigated

Social Security Administration

Report Number

142319

Report Description

The attached final report summarizes Ernst & Young LLP’s (Ernst & Young) review of the information technology security controls of common control providers. Under a contract the Office of Audit monitored, Ernst & Young, an independent certified public accounting firm, reviewed the security of common control providers. Ernst & Young interviewed Social Security Administration staff and management and reviewed evidence the Agency provided.

Report Type

Audit

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Open Recommendations

This report has 4 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use	Additional Details
1	No	$0	$0	Agree
This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.
2	No	$0	$0	Agree
This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.
3	No	$0	$0	Agree
This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.
4	No	$0	$0	Agree
This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.