An official website of the United States government
Here's how you know
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Brought to you by the Council of the Inspectors General on Integrity and Efficiency
Federal Reports
Report Date
Agency Reviewed / Investigated
Report Title
Type
Location
Department of Labor
The Employment and Training Administration Needs to Improve Oversight of Grants Awarded in Texas
Family Planning Commodities: USAID Must Provide Final Disposition Instructions to Stop Accruing Storage Costs for $8 Million in Unusable Items and $1.7 Million in Nearly Expired Items in Belgium
We visited the Wyckoff/Eagle Harbor Superfund site on Bainbridge Island, Washington, to observe the EPA’s management of public access to the site, including contaminated beaches. Through our visit, we aimed to determine whether we should conduct additional oversight.
Summary of Findings
Prior to our visit we identified concerns about public access to the site, but during our visit we observed physical access controls and informational devices that should effectively limit public exposure to contaminants. Therefore, we do not anticipate conducting additional oversight at this time.
Amtrak (the company) has been moving its technology systems and data to the cloud to provide on-demand access to shared services and reduce its dependence on in-house servers and databases. Migrating applications and data to the cloud, however, poses inherent security risks, exposing the company to an increased risk of cyberattacks. Accordingly, our objective was to assess the extent to which the company has implemented effective governance processes and security controls for cloud computing. In July 2025, we issued an interim report on this audit to alert the company to two pressing cybersecurity issues related to its cloud computing. In this report, we provide an update on the company’s progress on these issues and an overall assessment of its cloud computing practices. Given the sensitive nature of the report’s information, however, we are summarizing the results in this public version of the report.
Our assessment of the company’s governance processes and security controls of its cloud applications resulted in nine recommendations. In commenting on a draft of this report, the Executive Vice President for Digital Technology and Innovation agreed with our recommendations and described ongoing and planned actions to address them.
