Open Recommendations

OIG recommends that the Bureau of Intelligence and Research, in coordination with the Office of Management Strategy and Solutions and the Bureau of Diplomatic Technology, formally define and communicate areas of authority, roles, and responsibilities in the Geospatial Data Strategy for personnel responsible for carrying out compliance with the Geospatial Data Act of 2018.

OIG recommends that the Bureau of Intelligence and Research, in coordination with the Bureau of Budget and Planning, the Office of Management Strategy and Solutions, and the Bureau of Diplomatic Technology, develop and implement a comprehensive, long-term funding plan and include geospatial data when preparing its budget submission as prescribed by the Geospatial Data Act of 2018, Section 759(b)(2)(A), codified at 43 United States Code 2808(b)(2)(A).

OIG recommends that the Bureau of Intelligence and Research, in coordination with the Bureau of Administration, the Office of Management Strategy and Solutions, and the Bureau of Diplomatic Technology, (a) review current records schedules to determine whether data information products and other records created in geospatial data and activities are included on agency record schedules that have been approved by the National Archives and Records Administration as prescribed by the Geospatial Data Act of 2018, Section 759(a)(4), codified at 43 United States Code 2808(a)(4), and (b) update the records schedules as necessary to include geospatial data and activities.

Develop and implement a method to monitor FBI employees' compliance with mandatory reporting of suspected child abuse for an appropriate amount of time following the implementation of its updated policy and take appropriate remedial action in instances of non-compliance.

Develop an enterprise-wide strategy that addresses the rising number of crimes against children and human trafficking (CAC/HT) cases and ensures CAC/HT agents have appropriate support and resources to manage their assigned caseloads.

Implement sufficient controls to ensure all incidents involving an imminent or ongoing threat of sexual and/or physical abuse or exploitation of a child or adult are handled within 24 hours as required.

Implement sufficient controls to ensure FBI employees responsible for notifying victims and providing victim services become aware of all eligible federal crime victims, notify and offer services to these victims, and document victim notifications and services offered to victims in the investigative case file.

Enhance its monitoring of leads to ensure that leads are covered timely and appropriately.

We recommend the Massachusetts Executive Office of Health & Human Services follow up with the OTP providers to correct the three services that were not supported by the medical records.

We recommend the Massachusetts Executive Office of Health & Human Services review its procedures designed to prevent OTP noncompliance with Federal and State requirements and make changes to improve documentation of counseling and more timely review of OTP treatment plans.

Chief Information Officer develop and implement procedures to assess whether reinvestigations are performed timely for individuals who possess critical-sensitive/high-risk roles that require system access.

Chief Information Officer develop and implement policies and procedures to obtain feedback on the agency's specialized security training, update the training program, and request that third-party providers update their training content, as appropriate, to keep current with security practices.

To address these shortcomings, we recommend that USADF:
Update its training within 30 days of USAID OIG publishing this advisory to incorporate information on USAID OIG oversight authorities and procedures for disclosing allegations of fraud, waste, abuse, or mismanagement, and develop and implement a plan to provide the updated training to all USADF staff.

To address these shortcomings, we recommend that USADF:
Develop and implement a plan within 90 days of USAID OIG publishing this advisory to schedule fraud awareness briefings with USAID OIG's Office of Investigations for all USADF staff.

This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.

This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.

This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.

This recommendation contains sensitive information that should not be made public. Therefore, we are not including the wording for this recommendation.

We recommend that the Director of FSEM update OPM's Personal Property Management Policies and Procedures manual. The updated manual should meet all GSA standards and document a formal governance structure for OPM's Personal Property Management Process that clearly assigns responsibilities and delegates authority to all involved in the process.

We recommend that the Director of FSEM conduct an agency-wide inventory.

We recommend that OPM implement an agency-wide personal property system of record.

The VA North Florida/South Georgia Health System Director ensures that providers document their rationales for initiating involuntary examinations under the Baker Act within a patients electronic health record and monitors compliance.

We recommend that the South Carolina Department of Health and Human Services ensure that all physician-administered drugs eligible for rebates after our audit period are processed for rebates.

(U) Rec. 1.a: The DoD OIG recommended that the Assistant Secretary of the Air Force (Space Acquisition and Integration) conduct an analysis of the potential costs and performance benefits of modernizing the Upgraded Early Warning Radar.

(U) Rec. 1.b: The DoD OIG recommended that the Assistant Secretary of the Air Force (Space Acquisition and Integration), using the analysis of the potential costs and performance benefits of modernizing the Upgraded Early Warning Radar, develop a plan of action with milestones to execute the sustainment and modernization needed to maintain mission readiness.

We recommend that DOT determine the allowability of the questioned transactions and recover $919,266, if applicable.

We recommend that DOT work with FTA to determine the allowability of the questioned tribal transactions and recover $116,487, if applicable.

We recommend that the New Mexico Human Services Department work with the MCOs todevelop procedures to monitor PCS provider compliance with attendant qualifications, including those related to criminal background checks, abuse registry checks, TB tests, initial written competency tests, annual training, and CPR and first aid certifications; educate providers more frequently through methods such as guidance letters or webinars to increase PCS providers' understanding of attendant qualification requirements; and take corrective action against providers that do not ensure that attendants comply with qualification requirements, which could include removing providers that repeatedly fail to comply with the State's PCS program.

We recommend that the New Mexico Human Services Department share the results of our audit report with PCS providers statewide to emphasize the importance of attendants meeting qualification requirements and clarify the oversight provisions in its contracts with MCOs to require MCOs to monitor PCS providers' compliance with attendant qualification requirements and report monitoring results to the State agency.

We recommend that the Utah Department of Health and Human Services coordinate with DWS to provide periodic training to caseworkers that focuses on verifying and documenting information used and steps performed during the eligibility renewal process, including: (1) verifying income and assets, (2) verifying residency/contact information, and (3) correctly executing case review and reporting.

Rec. A.1.b: The DoD OIG recommended that the Commander, Air Force Materiel Command update Air Force Technical Order 00-35D-54, "USAF Deficiency Reporting, Investigation, and Resolution (DRI&R),"August 15, 2022, to provide details on the process for obtaining restitution from contractors that provide defective parts. The guidance should identify key roles and responsibilities and require the involvement of the responsible contracting officer in the process. The guidance should also require personnel to preserve an audit trail to support the receipt of restitution and specify the type of documentation needed. Upon completion of the updates, establish a program to provide recurring training to…

Rec. A.1.c: The DoD OIG recommended that the Commander, Air Force Materiel Command develop and implement controls and oversight to ensure tracking of contractor restitution from the completion of the investigation of the report on deficiencies in product quality through the receipt of restitution.

Rec. B.1.a: The DoD OIG recommended that the Commander, Air Force Materiel Command require C-130J aircraft deficiency reporting personnel to establish a process to track defective C-130J aircraft parts to ensure that the parts are shipped to the contractor and repaired or replaced under warranty. Also, comment on the $3 million in questioned costs related to defective parts the Air Force was unable to recover and $200,000 in questioned costs the Air Force incurred to repair defective parts under warranty. If the Commander disagrees with the questioned costs, identify the amount and the reason.

Ensure lessons learned from the ML-2’s acquisition, contract, and project management are codified to inform future development efforts

Conduct a thorough analysis of the feasibility of utilizing the fixed-price option, and if NASA determines that it will not be exercised, remove the option from the ML-2 contract

EXIM’s Office of Policy Analysis and International Relations should consider conducting a study with existing EEP exporters, to identify the key factors resulting in the decision to utilize EXIM for financing the EEP export. These key factors should then be assessed for potential inclusion into future outreach efforts with potential U.S. exporters to expand EEP transaction opportunities.

EXIM’s Chief Banking Officer should consider establishing periodic internal reporting of specific EEP outreach efforts by their office such that those efforts can be assessed for effectiveness in identifying and securing EEP authorizations. The reporting should include the type of outreach held, the attendees and any follow up meetings resulting from the outreach.

Establish procedures and controls to ensure that the appropriate field in AIMS is updated to include the taxpayer’s reported TPI plus unreported income identified during the examination in order to develop a measure of post-audit TPI.

Offer standardized training to any new HOA on the safeguard review process and best practices for submitting agency documentation.

Provide documentation to support that HAP was appropriately paid to the owners for the 66 units that had more than one stop payment. If additional HAP was inappropriately paid, the Authority should pursue collection from the applicable owners or reimburse its HCV Program from non-Federal funds.

Review its records to confirm whether it had cases of children with EBLLs during our audit period and work with the owner(s) of the HCV Program units to provide required documentation to HUD.

Work with HUD's OLHCHH to provide technical assistance to the Authority's staff to develop and implement procedures and controls for monitoring owners for compliance with HUD's EBLL requirements and attempting to collaborate with local health departments to identify cases of EBLL in children under 6 years of age under its HCV Program.

We recommend that IAF's chief information officer develop and implement a plan, including tools and other resources, to remediate critical and high vulnerabilities within the timeframes specified in the agency's "Information System Security Program Standard Operating Procedures" (February 2022).

Revise its procedures to ensure all electronic storage media containing sensitive or classified information, including hard drives that are extracted from computers slated for destruction, are appropriately accounted for, tracked, timely sanitized, and destroyed.

Implement controls to ensure its electronic storage media are marked with the appropriate National Security Information (NSI) classification level markings, in accordance with applicable policies and guidelines.

USAID West Bank and Gaza verify that Tech2Peace corrects the 3 instances of material noncompliance detailed on pages 25 to 27 of the audit report.

We recommend that MCC's Chief Information Officer take the following action: Recommendation 1. Implement level 3 event logging requirements in accordance with Office of Management and Budget Memorandum M-21-31.

Develop and communicate guidance on post-award spot checks to include a more detailed definition of spot checks, illustrative procedures and opportunities for their use, and procedures for appropriately communicating their results, when warranted.

USAID/West Bank and Gaza verify that the auditee corrects the two material weaknesses in internal control detailed on pages 16 to 19 of the audit report.

USAID/ West Bank and Gaza verify that the auditee corrects the 3 instances of material noncompliance detailed on pages 22 to 24 of the audit report.