The purpose of the audit was to (1) assess the adequacy of the Institute of Education Sciences’ (IES) Statewide Longitudinal Data System (SLDS) grant requirements and monitoring of States to ensure internal controls are in place to prevent, detect, and report unauthorized access and disclosure of personally identifiable information in SLDSs; and (2) determine whether selected States have internal controls in place to prevent, detect, report, and respond to unauthorized access and disclosure of personally identifiable information in their SLDSs. We found that IES’s grant requirements were adequate to ensure the protection of personally identifiable information. We also found that the grantees that we audited addressed these requirements in the approved grant applications by identifying and noting that they would comply with specific State requirements pertaining to data and system security. However, we found that IES had inadequate controls for monitoring its grantees’ adherence to State system security requirements. Specifically, IES did not ensure that its grantees met the minimum State system security requirements. We identified internal control weakness at all three grantees audited that increased the risk that these grantees would be unable to prevent or detect unauthorized access and disclosure of personally identifiable information in their SLDSs.
| Report Date | Agency Reviewed / Investigated | Report Title | Type | Location | |
|---|---|---|---|---|---|
| Department of Education | Protection of Personally Identifiable Information in Statewide Longitudinal Data Systems | Audit | Agency-Wide | View Report | |
| Office of Personnel Management | Audit of Global Coordination of Benefits for Blue Cross and Blue Shield Plans | Audit | Agency-Wide | View Report | |
| Department of the Interior | Alleged Charge Card Fraud by USGS Employee Unfounded | Investigation | Agency-Wide | View Report | |
| U.S. Agency for International Development | Audit of USAID Resources Managed by Child Welfare Bloemfontein and Child Line Free State in South Africa Under Cooperative Agreement AID-674-A-13-00003, April 1, 2016, to March 31, 2017 | Other |
|
View Report | |
| Department of Justice | Audit of the Office of Justice Programs Office for Victims of Crime Victim Compensation Formula Grants Awarded to the Delaware Victims’ Compensation Assistance Program, Wilmington, Delaware | Audit |
|
View Report | |
| Department of Homeland Security | USCIS Has Unclear Website Information and Unrealistic Time Goals for Adjudicating Green Card Applications | Inspection / Evaluation | Agency-Wide | View Report | |
| Department of Justice | Memorandum for the Director of the Office of Attorney Recruitment and Management: Report of Investigation of Alleged Retaliation Against FBI Technician | Other | Agency-Wide | View Report | |
| Department of Justice | Investigative Summary: Findings of Reasonable Grounds to Believe that an FBI Technician Suffered Reprisal as a Result of Protected Disclosures in Violation of FBI Whistleblower Regulations | Investigation | Agency-Wide | View Report | |
| Department of Justice | Procedural Reform Recommendation for the Federal Bureau of Investigation | Other | Agency-Wide | View Report | |
| Federal Labor Relations Authority | Audit of FLRA's Property and Equipment | Audit | Agency-Wide | View Report | |
