Internal controls (21 - 30 of 241 items)
Federal Software Licenses: Most Agencies Have Reported Planned Actions to Address Our Prior Recommendations on Software License Management
GAO-14-835R: Published: Sep 23, 2014. Publicly Released: Sep 23, 2014.
As of August 2014, the majority of agencies that have provided information reported that they plan to address most of the recommendations GAO made to them. Specifically, 21 agencies plan to fully address all recommendations. For example, the Department of Education stated that in response to the weakness GAO identified, a department-wide directive that establishes guidelines for software acquisiti...
Healthcare.gov: Actions Needed to Address Weaknesses in Information Security and Privacy Controls
GAO-14-730: Published: Sep 16, 2014. Publicly Released: Sep 16, 2014.
Many systems and entities exchange information to carry out functions that support individuals' ability to use Healthcare.gov to compare, select, and enroll in private health insurance plans participating in the federal marketplaces, as required by the Patient Protection and Affordable Care Act (PPACA). The Centers for Medicare & Medicaid Services (CMS) has overall responsibility for key federal s...
Federal Software Licenses: Better Management Needed to Achieve Significant Savings Government-Wide
GAO-14-413: Published: May 22, 2014. Publicly Released: May 22, 2014.
The Office of Management and Budget (OMB) and the vast majority of agencies that GAO reviewed do not have adequate policies for managing software licenses. While OMB has a policy on a broader information technology (IT) management initiative that is intended to assist agencies in gathering information on their IT investments, including software licenses, it does not guide agencies in developing co...
Information Technology: SSA Needs to Address Limitations in Management Controls and Human Capital Planning to Support Modernization Efforts
GAO-14-308: Published: May 8, 2014. Publicly Released: May 8, 2014.
The Social Security Administration’s (SSA) selected information technology (IT) projects did not fully adhere to management controls called for by its IT project management guidance, which are essential to effectively oversee and monitor IT investments. Such controls include, among others, a cost-benefit analysis, risk mitigation plan, and project schedule. For the five projects selected, SSA de...
F-35 Joint Strike Fighter: Slower Than Expected Progress in Software Testing May Limit Initial Warfighting Capabilities
GAO-14-468T: Published: Mar 26, 2014. Publicly Released: Mar 26, 2014.
Delays in developmental flight testing of the F-35's critical software may hinder delivery of the warfighting capabilities the military services expect. F-35 developmental flight testing comprises two key areas: mission systems and flight sciences. Mission systems testing verifies that the software-intensive systems that provide critical warfighting capabilities function properly and meet requirem...
Information Technology: HUD's Expenditure Plan Satisfied Statutory Conditions; Sustained Controls and Modernization Approach Needed
GAO-14-283: Published: Feb 12, 2014. Publicly Released: Feb 12, 2014.
The Department of Housing and Urban Development's (HUD) fiscal year 2013 information technology (IT) expenditure plan satisfied the two sets of statutory conditions contained in the appropriations act. Regarding the first set of conditions, the plan identified for each project the functional and performance capabilities to be delivered, mission benefits, life-cycle costs, and key milestones. For e...
Border Security: DHS Needs to Strengthen Its Efforts to Modernize Key Enforcement Systems
GAO-14-342T: Published: Feb 6, 2014. Publicly Released: Feb 6, 2014.
The schedule and cost for the Department of Homeland Security's (DHS) border enforcement system modernization program known as TECS Mod that is managed by Customs and Border Protection's (CBP) continue to change; while the part managed in parallel by Immigration and Customs Enforcement (ICE) is undergoing major revisions to its scope, schedule, and cost after discovering that its initial solution...
IT Dashboard: Agencies Are Managing Investment Risk, but Related Ratings Need to Be More Accurate and Available
GAO-14-64: Published: Dec 12, 2013. Publicly Released: Jan 13, 2014.
As of August 2013, the Chief Information Officers (CIO) at the eight selected agencies rated 198 of their 244 major information technology (IT) investments listed on the Federal IT Dashboard (Dashboard) as low risk or moderately low risk, 41 as medium risk, and 5 as high risk or moderately high risk. However, the total number of investments reported by these agencies has varied over time, which im...
Information Technology: Department of Labor Could Further Facilitate Modernization of States' Unemployment Insurance Systems
GAO-12-957: Published: Sep 26, 2012. Publicly Released: Sep 26, 2012.
The Department of Labor (Labor) facilitates states efforts to modernize information technology (IT) systems supporting their unemployment insurance (UI) programs by (1) providing funds for administrating overall UI operations and (2) participating in groups that provide technical support to states. While the federal-state structure of the UI program places primary responsibility for its admi...
Data Mining: DHS Needs to Improve Executive Oversight of Systems Supporting Counterterrorism
GAO-11-742: Published: Sep 7, 2011. Publicly Released: Oct 7, 2011.
Data mining--a technique for extracting useful information from large volumes of data--is one type of analysis that the Department of Homeland Security (DHS) uses to help detect and prevent terrorist threats. While data-mining systems offer a number of promising benefits, their use also raises privacy concerns. GAO was asked to (1) assess DHS policies for evaluating the effectiveness and privacy p...