Internal controls (1 - 10 of 70 items)
Financial Management Systems: HUD Needs to Address Management and Governance Weaknesses That Jeopardize Its Modernization Efforts
GAO-16-656: Published: Jul 28, 2016. Publicly Released: Jul 28, 2016.
In October 2015, as part of its planned New Core financial management systems modernization efforts, the Department of Housing and Urban Development (HUD) completed transitioning 4 of 14 capabilities to shared service solutions. The implemented capabilities were for managing employee travel and relocation; recording time and attendance; performing core accounting functions such as general ledger a...
DOD Major Automated Information Systems: Improvements Can Be Made in Reporting Critical Changes and Clarifying Leadership Responsibility
GAO-16-336: Published: Mar 30, 2016. Publicly Released: Mar 30, 2016.
All 18 major automated information system (MAIS) programs that experienced a critical change to program cost, schedule, or system performance targets submitted complete reports to Congress that contained all four statutory elements, but 16 programs did not meet the requirement to report to Congress within 60 days of the program manager's submission to the senior Department of Defense (DOD) officia...
Vehicle Safety: Enhanced Project Management of New Information Technology Could Help Improve NHTSA's Oversight of Safety Defects
GAO-16-312: Published: Feb 24, 2016. Publicly Released: Mar 24, 2016.
The National Highway Traffic Safety Administration (NHTSA) faces several challenges in its oversight of vehicle safety defects and has initiated or proposed some actions to address them. Challenges include improving data collection and analysis, providing adequate guidance and standard business processes to the staff who identify and investigate potential vehicle defects, and keeping pace with new...
Information Technology: FDA Has Taken Steps to Address Challenges but Needs a Comprehensive Strategic Plan
GAO-16-182: Published: Dec 17, 2015. Publicly Released: Dec 17, 2015.
As of September 2015, the Food and Drug Administration (FDA), an agency within the Department of Health and Human Services (HHS), had developed and released a new information technology (IT) strategic plan, entitled Information Technology Strategic Plan, Version 1.0 . The plan, according to the agency's Chief Information Officer (CIO), was developed to help FDA's Office of Information Management a...
2020 Census: Key Information Technology Decisions Must Be Made Soon
GAO-16-205T: Published: Nov 3, 2015. Publicly Released: Nov 3, 2015.
GAO has previously reported that the U.S. Census Bureau (Bureau) faces a number of critical challenges in developing and deploying the information technology (IT) systems and infrastructure it plans to rely on to conduct the significantly redesigned 2020 Census. Specifically, the Bureau has a major IT program under way to modernize and consolidate the multiple, duplicative systems it currently use...
Cybersecurity: Recent Data Breaches Illustrate Need for Strong Controls across Federal Agencies
GAO-15-725T: Published: Jun 24, 2015. Publicly Released: Jun 24, 2015.
GAO has identified a number of challenges federal agencies face in addressing threats to their cybersecurity, including the following:Designing and implementing a risk-based cybersecurity program.Enhancing oversight of contractors providing IT services.Improving security incident response activities.Responding to breaches of personal information.Implementing cybersecurity programs at small agencie...
Healthcare.gov: Actions Needed to Address Weaknesses in Information Security and Privacy Controls
GAO-14-730: Published: Sep 16, 2014. Publicly Released: Sep 16, 2014.
Many systems and entities exchange information to carry out functions that support individuals' ability to use Healthcare.gov to compare, select, and enroll in private health insurance plans participating in the federal marketplaces, as required by the Patient Protection and Affordable Care Act (PPACA). The Centers for Medicare & Medicaid Services (CMS) has overall responsibility for key federal s...
Data Mining: DHS Needs to Improve Executive Oversight of Systems Supporting Counterterrorism
GAO-11-742: Published: Sep 7, 2011. Publicly Released: Oct 7, 2011.
Data mining--a technique for extracting useful information from large volumes of data--is one type of analysis that the Department of Homeland Security (DHS) uses to help detect and prevent terrorist threats. While data-mining systems offer a number of promising benefits, their use also raises privacy concerns. GAO was asked to (1) assess DHS policies for evaluating the effectiveness and privacy p...
Information Security: State Has Taken Steps to Implement a Continuous Monitoring Application, but Key Challenges Remain
GAO-11-149: Published: Jul 8, 2011. Publicly Released: Aug 8, 2011.
The Department of State (State) has implemented a custom application called iPost and a risk scoring program that is intended to provide continuous monitoring capabilities of information security risk to elements of its information technology (IT) infrastructure. Continuous monitoring can facilitate nearer real-time risk management and represents a significant change in the way information securit...
Electronic Government: National Archives and Records Administration's Fiscal Year 2011 Expenditure Plan
GAO-11-299: Published: Mar 4, 2011. Publicly Released: Mar 4, 2011.
Since 2001, the National Archives and Records Administration (NARA) has been working to develop an Electronic Records Archive (ERA) to preserve and provide access to massive volumes of all types of electronic records. NARA originally planned to complete the system in 2012, but has repeatedly revised the program schedule and estimated cost and is now planning to deploy an ERA system with reduced fu...