Reports & Testimonies

  • GAO’s recommendations database contains report recommendations that still need to be addressed.

    GAO’s recommendations help congressional and agency leaders prepare for appropriations and oversight activities, as well as help improve government operations. Recommendations remain open until they are designated as Closed-implemented or Closed-not implemented. You can explore open recommendations by searching or browsing.

    GAO's priority recommendations are those that we believe warrant priority attention. We sent letters to the heads of key departments and agencies, urging them to continue focusing on these issues. These recommendations are labeled as such. You can find priority recommendations by searching or browsing our open recommendations below, or through our mobile app.

  • Browse Open Recommendations

    Explore priority recommendations by subject terms or browse by federal agency

    Search Open Recommendations

    Search for a specific priority recommendation by word or phrase



  • Governing on the go?

    Our Priorities for Policy Makers app makes it easier for leaders to search our recommendations on the go.

    See the November 10th Press Release


  • Have a Question about a Recommendation?

    • For questions about a specific recommendation, contact the person or office listed with the recommendation.
    • For general information about recommendations, contact GAO's Audit Policy and Quality Assurance office at (202) 512-6100 or apqa@gao.gov.
  • « Back to Results List Sort by   

    Results:

    Subject Term: Communications

    24 publications with a total of 58 open recommendations including 1 priority recommendation
    Director: Mark Goldstein
    Phone: (202) 512-2834

    2 open recommendations
    Recommendation: As part of its annual reporting on the broadband market, FCC should solicit and report on the views of stakeholders and others on how well FCC's actions promote broadband competition. (Recommendation 1)

    Agency: Federal Communications Commission
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: As part of its annual reporting on the broadband market, FCC should solicit and report on the views of stakeholders and others on how varying levels of broadband deployment affect broadband prices and service quality. (Recommendation 2)

    Agency: Federal Communications Commission
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Mark Goldstein
    Phone: (202) 512-2834

    2 open recommendations
    Recommendation: The Chairman of the FCC should establish quantifiable goals and related measures--performance indicators, targets, and timeframes--for its enforcement program and annually publish the results to demonstrate the performance of this program and improve transparency regarding FCC's enforcement priorities. (Recommendation 1)

    Agency: Federal Communications Commission
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: The Chairman of the FCC should establish, and make publically available, a communications strategy outlining the agency's enforcement program for external stakeholders, to improve engagement with the telecommunications community on the purposes, objectives, and processes the Enforcement Bureau employs to achieve its mission. (Recommendation 2)

    Agency: Federal Communications Commission
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Gregory C. Wilshusen
    Phone: (202) 512-6244

    9 open recommendations
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should determine the extent to which the statutorily required implementing principles apply to NCCIC's cybersecurity functions.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that NCCIC is currently conducting an analysis of all mission functions to include the following goals: simplify the descriptions of NCCIC's mission functions, document all NCCIC functional capabilities, document the applicability of implementing principles to NCCIC mission functions, and map as appropriate. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should develop metrics for assessing adherence to applicable principles in carrying out statutorily required functions.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that they were still in the process completing mission functional analysis described in DHS's response to Recommendation 1, which would serve as the basis of developing metrics. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should establish methods for monitoring the implementation of cybersecurity functions against the principles on an ongoing basis.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that NCCIC is updating existing policies and procedures for program management reviews (PMR) to include the metrics developed in recommendation two. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should integrate information related to security incidents to provide management with more complete information about NCCIC operations.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that the NCCIC updated guidelines for incident reporting would be completed in May 2017. In addition, according to DHS, incident management system requirements were updated to support the new guidelines and are scheduled to be implemented in June 2017. DHS stated that these steps will enable the successful implementation of the new National Cyber Incident Scoring Schema (NCISS), which the NCCIC Watch Operations uses to help facilitate the timely, actionable, and relevant dissemination of information to leadership. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. As of August 2017, DHS has not provided evidence that the new guidelines have been implemented. However, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should determine the necessity of reducing, consolidating, or modifying the points of entry used to communicate with NCCIC to better ensure that all incident tickets are logged appropriately.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that NCCIC had completed initial mapping of information flows, as well as the roles and responsibilities for the incident management function. A plan to integrate or consolidate disparate incident reporting systems is scheduled to be completed in December 2017. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should develop and implement procedures to perform regular reviews of customer information to ensure that it is current and reliable.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that NPPD is gathering the requirements for a customer relationship management (CRM) tool that will support regular reviews and updates to customer information. Additionally, DHS stated that NCCIC will establish and implement a standing operating procedure for capturing and regularly updating prioritized customer information including contact information in the event of an incident. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should take steps to ensure the full representation of the owners and operators of the nation's most critical cyber-dependent infrastructure assets.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that the Office of Cybersecurity and Communications is establishing integrated customer engagement activities that support cyber risk mitigation and incident response planning. In addition, NCCIC will develop standing operating procedures that leverage existing information sharing programs, activities and relationships to tailor engagements that support owners and operators of the most critical cyber-dependent infrastructure assets including designated lifeline sectors. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should establish plans and time frames for consolidating or integrating the legacy networks used by NCCIC analysts to reduce the need for manual data entry.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that the Assistant Secretary of Office of Cybersecurity and Communications (CS&C) had consolidated the Enterprise Architecture role within the Office of the Chief Technology Officer (CTO). Working across CS&C, the CTO will establish a technology roadmap, to include consolidation of networks. In addition, NCCIC is working to determine the potential impact of network consolidation on mission functions, including mapping current data sources. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Recommendation: To more fully address the requirements identified in the National Cybersecurity Protection Act of 2014 and the Cybersecurity Act of 2015, the Secretary of the Department of Homeland Security should identify alternative methods to collaborate with international partners, while ensuring the security requirements of high-impact systems.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In April 2017, DHS stated that the potential reduction in sharing cybersecurity products that may result from migrating the NCCIC Portal to HSIN should be minimal. Contingency information sharing plans will be developed to mitigate potential issues through alternate information sharing practices, particularly involving an actual incident during migration transition. Foreign partnerships will continued to be maintained by exercises, analytic exchanges with our closest partners, and continued participation in multilateral and bilateral engagements. Once completed, we will analyze the output of NCCIC's efforts in this area to determine the extent to which DHS has fulfilled this recommendation. In August 2017, DHS officials stated an update on the status of the recommendations was forthcoming in September 2017. We will review the evidence provided and update the recommendation status as appropriate.
    Director: Brian Lepore
    Phone: (202) 512-4523

    1 open recommendations
    Recommendation: To better enable DOD to provide congressional decision makers with complete and reliable information on the total anticipated costs for the JIAC consolidation efforts, the Office of the Assistant Secretary of Defense for Energy, Installations, and Environment's Basing Office--in coordination with the Office of the Assistant Secretary of the Air Force Installations, Environment and Energy-- should update future construction cost estimates for consolidating the JIAC at RAF Croughton using best practices for cost estimating as identified in the GAO Cost Estimating and Assessment Guide. Specifically, cost estimates for the JIAC consolidation should fully incorporate all four characteristics of a high-quality, reliable estimate.

    Agency: Department of Defense: Office of the Secretary of Defense: Office of the Under Secretary of Defense for Acquisition, Technology, and Logistics: Office of the Assistant Secretary of Defense for Energy, Installations, and Environment
    Status: Open

    Comments: In commenting on this report, DOD did not concur with our recommendation. DOD agreed that many components in the GAO Cost Estimating and Assessment Guide are broadly applicable in the decision process leading up to a military construction budget request. However, DOD further stated that once military construction funds are authorized and appropriated by Congress, the department transitions to a project management mode, and it would be a waste of resources to continue to generate cost estimates once they have transitioned to managing project execution using actual cost data. However, as we note in the report, DOD guidance for estimating construction costs, DOD?s Unified Facilities Criteria 3-740-05, states that in the MILCON program, construction cost estimates are prepared throughout the planning, design, and construction phases of a construction project to account for the refinement of the project?s design and requirements. The final estimate should document the department?s assessment of the program's most probable cost and ensure that enough funds are available to execute it. As of October 2016, the military construction funds had not been authorized by Congress for the third phase of the JIAC construction project. According to DOD officials, construction is not scheduled to begin until fall of 2017, and the contract has not yet been awarded. Further, the GAO Cost Estimating and Assessment Guide states that regardless of whether changes to the program result from a major contract modification or an overtarget budget, the cost estimate should be regularly updated to reflect all changes. This is also a requirement outlined in OMB?s Capital Programming Guide. The purpose of updating the cost estimate is to check its accuracy, defend the estimate over time, and archive cost and technical data for use in future estimates. After the internal agency and congressional budgets are prepared and submitted, it is imperative that cost estimators continue to monitor the program to determine whether the preliminary information and assumptions remain relevant and accurate. Keeping the estimate updated gives decision makers accurate information for assessing alternative decisions. Cost estimates must also be updated whenever requirements change, and the results should be reconciled and recorded against the old estimate baseline. Therefore, we continue to believe that DOD?s implementation of our recommendation to update future JIAC cost estimates using the best practices identified in the GAO Cost Estimating and Assessment Guide would assist in ensuring that decision makers have complete and reliable information about costs associated with the JIAC consolidation and as the third phase of the JIAC project is authorized. Implementing our recommendation would also ensure that DOD develops a reliable historical record for the cost of the JIAC that can be used to estimate other similar projects in the future. As of June 2017, the agency had not taken any action to implement this recommendation.
    Director: Joseph W. Kirschbaum
    Phone: (202) 512-9971

    2 open recommendations
    Recommendation: To ensure that decision makers have immediate visibility into all capabilities of the National Guard that could support civil authorities in a cyber incident, the Secretary of Defense should maintain a database that can fully and quickly identify the cyber capabilities that the National Guard in the 50 states, three territories, and the District of Columbia have and could be used--if requested and approved--to support civil authorities in a cyber incident.

    Agency: Department of Defense
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To better prepare DOD to support civil authorities in a cyber incident, the Secretary of Defense should direct the Deputy Assistant Secretary of Defense for Cyber Policy, the Chief of the National Guard Bureau, the Commander of U.S. Northern Command, and the Commander of U.S. Cyber Command to conduct a tier 1 exercise that will improve DOD's planning efforts to support civil authorities in a cyber incident. Such an exercise should also address challenges from prior exercises, such as limited participant access to exercise environment, inclusion of other federal agencies and private-sector cybersecurity vendors, and incorporation of emergency or disaster scenarios concurrent to cyber incidents.

    Agency: Department of Defense
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Mark Goldstein
    Phone: (202) 512-2834

    3 open recommendations
    Recommendation: To improve the effectiveness, transparency, and accountability of the ECPC's efforts, the Secretary of Homeland Security, as the administrative leader of the ECPC, should clearly document the ECPC's strategic goals.

    Agency: Department of Homeland Security
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To improve the effectiveness, transparency, and accountability of the ECPC's efforts, the Secretary of Homeland Security, as the administrative leader of the ECPC, should establish a mechanism to track progress by the ECPC's member agencies in implementing the ECPC's recommendations.

    Agency: Department of Homeland Security
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To improve the effectiveness, transparency, and accountability of the ECPC's efforts, the Secretary of Homeland Security, as the administrative leader of the ECPC, should clearly define the roles and responsibilities of the ECPC's member agencies.

    Agency: Department of Homeland Security
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Jennifer Grover
    Phone: (202) 512-7141

    2 open recommendations
    Recommendation: To better position the Coast Guard to effectively plan its Arctic operations, the Commandant of the Coast Guard should develop measures, as appropriate, for gauging how the agency's actions have helped to mitigate the Arctic capability gaps.

    Agency: Department of Homeland Security: United States Coast Guard
    Status: Open

    Comments: In June 2016, we reviewed and reported on the U.S. Coast Guard's efforts in the Arctic. We found that the Coast Guard had taken actions to implement its Arctic strategy and conduct Arctic operations, which may help the Coast Guard to better understand and mitigate identified Arctic capability gaps. Further, we found that the Coast Guard was tracking, or had plans to track, its various activities in the Arctic, but that it had not developed measures to systematically assess how its actions have helped to mitigate Arctic capability gaps. We recommended that the Coast Guard develop measures, as appropriate, for gauging how the agency's actions have helped to mitigate the Arctic capability gaps. In response to our recommendation, in August 2016, the Coast Guard reported that specific measures for some activities would be developed and included as part of the Coast Guard's update to its implementation plan for its Arctic strategy. In March 2017, the Coast Guard reported that it completed an annual review of its implementation plan in January 2017. However, officials stated that technology updates and modifications to its tracking tool are required to better represent the completion percentage. To fully address this recommendation, the Coast Guard will need to finalize the development of its measures to gauge how its actions have helped to mitigate Arctic capability gaps.
    Recommendation: To better position the Coast Guard to effectively plan its Arctic operations, the Commandant of the Coast Guard should design and implement a process to systematically assess the extent to which actions taken agency-wide have helped mitigate the Arctic capability gaps for which it has responsibility.

    Agency: Department of Homeland Security: United States Coast Guard
    Status: Open

    Comments: In June 2016, we reviewed and reported on the U.S. Coast Guard's efforts in the Arctic. We found that the Coast Guard had taken actions to implement its Arctic strategy and conduct Arctic operations, which may help the Coast Guard to better understand and mitigate identified Arctic capability gaps. Further, we found that the Coast Guard was tracking, or had plans to track, its various activities in the Arctic, but that it had not systematically assessed how its actions have helped to mitigate Arctic capability gaps. We recommended that the Coast Guard design and implement a process to systematically assess the extent to which actions taken agency-wide have helped mitigate the Arctic capability gaps for which it has responsibility, so that it will better understand the status of these gaps and be better positioned to effectively plan its Arctic operations. In August 2016, the Coast Guard reported that through its annual review of its implementation plan for its Arctic Strategy, that it will systematically assess how its actions have mitigated capability gaps for which it is the lead agency under the Implementation Framework for the National Strategy for the Arctic Region. In March 2017, the Coast Guard reported that it completed an annual review of its implementation plan in January 2017 which resulted in the consolidation, removal, and addition of Arctic initiatives. Further, officials stated that the Coast Guard will continue to work with the Arctic Executive Steering Committee to provide information for the tracking and measurement of national capabilities, needs and gaps, and impacts in the Arctic Region. To fully address this recommendation, the Coast Guard will need to assess how its actions have helped to mitigate Arctic capability gaps, and provide documentation that identifies the progress it has made in helping to mitigate Arctic capability gaps.
    Director: Chris Currie
    Phone: (404) 679-1875

    5 open recommendations
    Recommendation: To enhance accountability for key risk-management activities and facilitate coordination with federal and industry stakeholders regarding electromagnetic risks, the Secretary of Homeland Security should designate roles and responsibilities within the department for addressing electromagnetic risks and communicate these to federal and industry partners.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In a June 2016 update to our proposed recommendation, DHS reported that the Cyber, Infrastructure and Resilience (CIR) Policy Office within the DHS Office of Policy is working with DHS components to identify and articulate the roles of the National Protection and Programs Directorate, Federal Emergency Management Agency, Science and Technology Directorate, and others regarding to address electromagnetic risks. As part of this effort, CIR is to coordinate the development of a joint roles and responsibilities document to be communicated through existing partnership structures with internal and external entities.
    Recommendation: To more fully leverage critical infrastructure expertise and address responsibilities to identify critical electrical infrastructure assets as called for in the National Infrastructure Protection Plan, the Secretary of Homeland Security and the Secretary of Energy direct responsible officials to review FERC's electrical infrastructure analysis and collaborate to determine whether further assessment is needed to adequately identify critical electric infrastructure assets, potentially to include additional elements of criticality that might be considered.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In a June 2016 update to our proposed recommendation, DHS reported that the National Protection and Programs Directorate (NPPD) will increase collaborative outreach activities with FERC staff that will include a review of identified critical substations developed by FERC. The intended outcome of this review is to inform DHS activities regarding identification and prioritization of critical infrastructure assets for use during steady state and response activities. NPPD is also to inform FERC of its criticality modeling capabilities through the National Infrastructure Simulation and Analysis Center (NISAC) to enhance engagement with FERC's electric power subject matter expertise and inform future capability developments regarding response to and recovery from events such as electromagnetic pulse.
    Recommendation: To more fully leverage critical infrastructure expertise and address responsibilities to identify critical electrical infrastructure assets as called for in the National Infrastructure Protection Plan, the Secretary of Homeland Security and the Secretary of Energy direct responsible officials to review FERC's electrical infrastructure analysis and collaborate to determine whether further assessment is needed to adequately identify critical electric infrastructure assets, potentially to include additional elements of criticality that might be considered.

    Agency: Department of Energy
    Status: Open

    Comments: In June 2016, DOE provided an update (60-day letter) reiterating their intent to continue with actions identified previously to address the GAO recommendation, namely that the Office of Electricity Delivery and Energy Reliability was to review the Federal Energy Regulatory Commission's electrical infrastructure analysis, and subsequently engage with FERC and DHS to identify if any additional elements of criticality should be considered.
    Recommendation: To enhance federal efforts to assess electromagnetic risks and help determine protection priorities, the Secretary of Homeland Security should direct the Under Secretary for National Protection and Programs Directorate and the Assistant Secretary for the IP to work with other federal and industry partners to collect and analyze key inputs on threat, vulnerability, and consequence related to electromagnetic risks--potentially to include collecting additional information from DOD sources and leveraging existing assessment programs such as the Infrastructure Survey Tool, Regional Resiliency Assessment Program, and DCIP.

    Agency: Department of Homeland Security
    Status: Open

    Comments: In a June 2016 update, DHS reported that the department had completed the planned refresh of the Strategic National Risk Assessment, which was intended to incorporate potential impacts to the power system from electromagnetic events. In addition, DHS reported that the Electricity Sub-sector Coordinating Council created an Electromagnetic pulse (EMP) task force, which met in April 2016 and is currently working to develop a joint industry and government approach to address EMP. It was further noted that DHS and DOE initiated a joint study on the effects of EMP on the electric power sector - led by Los Alamos National Laboratory and the National Infrastructure Simulation and Analysis Center (NISAC) - to analyze the hazard environments, impacts, and consequences of EMP and GMD on U.S. electric power infrastructure. In addition, DHS noted their support of a new effort by the Electric Power Research Institute and 39 industry partners to further study EMP vulnerabilities.
    Recommendation: To facilitate federal and industry efforts to coordinate risk-management activities to address an EMP attack, the Secretary of Homeland Security and the Secretary of Energy should direct responsible officials to engage with federal partners and industry stakeholders to identify and implement key EMP research and development priorities, including opportunities for further testing and evaluation of potential EMP protection and mitigation options.

    Agency: Department of Energy
    Status: Open

    Comments: On March 9, 2016 DOE provided agency comments on GAO-16-243 concurring with the recommendation and identifying related actions. Specifically, DOE reported collaboration with the Electric Power Research Institute to develop a joint DOE/Industry EMP Strategy to include key goals and objectives and identification of R&D priorities. The Strategy is expected to be completed by August 31, 2016 to be followed by more detailed action plans. DOE reported that they will collaborate with DHS and DOD in development of the Strategy and action plans. DOE further noted that a report by the Idaho National Laboratory report also identifies potential technology gaps and includes recommendations for further R&D efforts, which will be incorporated when developing the forthcoming action plans.
    Director: Mark L. Goldstein
    Phone: (202) 512-2834

    1 open recommendations
    Recommendation: The Chairman of FCC should review joint sales agreements (JSA) filed in stations' public inspection files to identify stations involved in those JSAs and take action to ensure that each station involved has filed its JSA as required.

    Agency: Federal Communications Commission
    Status: Open

    Comments: As of April 2017, FCC officials stated that the agency has not taken any action related to this recommendation.
    Director: Mark Goldstein
    Phone: (202) 512-2834

    1 open recommendations
    Recommendation: To strengthen FCC's data collection efforts, the Chairman of FCC should develop a strategy to gather additional information on the IP transition to assess the transition's potential effects on public safety and consumers.

    Agency: Federal Communications Commission
    Status: Open

    Comments: FCC stated it will continue to use its existing strategy to obtain data necessary to ensure that core values remain intact through the tech transitions with present resource commitment levels. FCC plans to dedicate resources toward upgrading FCC systems and software to better use "big-data" capabilities.
    Director: Gregory C. Wilshusen
    Phone: (202) 512-6244

    7 open recommendations
    Recommendation: To better monitor and provide a basis for improving the effectiveness of cybersecurity risk mitigation activities, informed by the sectors' updated plans and in collaboration with sector stakeholders, the Secretary of Homeland Security should direct responsible officials to develop performance metrics to provide data and determine how to overcome challenges to monitoring the chemical, commercial facilities, communications, critical manufacturing, dams, emergency services, information technology, and nuclear sectors' cybersecurity progress.

    Agency: Department of Homeland Security
    Status: Open

    Comments: DHS has released updated sector-specific plans for the chemical, commercial facilities, communications, critical manufacturing, dams, emergency services, information technology, and nuclear reactors sectors. The plans include a section on measuring effectiveness based on the plan development guidance. The plans provide expected metrics to track the progress of sector activities and state that the outcomes will be reported through the National Annual Reporting process as well as through the quadrennial plan update. Because the metrics are new and annual reporting has not yet occurred, DHS has not provided evidence of metrics data collected and reported to address the challenges. We will continue to follow-up to determine how performance measures have been implemented and what reporting is available based on those measures.
    Recommendation: To better monitor and provide a basis for improving the effectiveness of cybersecurity risk mitigation activities, informed by the sectors' updated plans and in collaboration with sector stakeholders, the Secretary of the Treasury should direct responsible officials to develop performance metrics to provide data and determine how to overcome challenges to monitoring the financial services sector's cybersecurity progress.

    Agency: Department of the Treasury
    Status: Open

    Comments: The 2015 sector-specific plan for the financial services sector includes a section on measuring the effectiveness of sector activities; however, the plan does not include specific metrics. The plan refers to working groups and meetings of sector stakeholders as mechanisms to track sector progress. No specific metrics and associated reports of outcomes have been provided to address overcoming the challenges of monitoring the sector's cybersecurity progress. We will continue to monitor financial services sector activities and determine any specific metrics and related reports developed and implemented to track and report on the sector's cybersecurity progress.
    Recommendation: To better monitor and provide a basis for improving the effectiveness of cybersecurity risk mitigation activities, informed by the sectors' updated plans and in collaboration with sector stakeholders, the Secretaries of Agriculture and Health and Human Services (as co-SSAs) should direct responsible officials to develop performance metrics to provide data and determine how to overcome challenges to monitoring the food and agriculture sector's cybersecurity progress.

    Agency: Department of Agriculture
    Status: Open

    Comments: The Departments of Agriculture and Health and Human Services released an update to the food and agriculture sector-specific plan for 2015. The plan states the sector's lack of an overarching mechanism to measure and evaluate risk mitigation activities and the challenge of obtaining performance measurement data from non-federal partners. However, the plan notes a goal of evaluating the progress of individual protective programs and strategies. No metrics or reports of outcomes have been provided to address the challenge of monitoring the sector's cybersecurity progress. We will continue to follow up to determine whether USDA and HHS have developed and implemented mechanisms to measure the outcomes of their sector cybersecurity-related activities.
    Recommendation: To better monitor and provide a basis for improving the effectiveness of cybersecurity risk mitigation activities, informed by the sectors' updated plans and in collaboration with sector stakeholders, the Secretaries of Agriculture and Health and Human Services (as co-SSAs) should direct responsible officials to develop performance metrics to provide data and determine how to overcome challenges to monitoring the food and agriculture sector's cybersecurity progress.

    Agency: Department of Health and Human Services
    Status: Open

    Comments: The Departments of Agriculture and Health and Human Services released an update to the food and agriculture sector-specific plan for 2015. The plan states the sector's lack of an overarching mechanism to measure and evaluate risk mitigation activities and the challenge of obtaining performance measurement data from non-federal partners. However, the plan notes a goal of evaluating the progress of individual protective programs and strategies. No metrics or reports of outcomes have been provided to address the challenge of monitoring the sector's cybersecurity progress. We will continue to follow up to determine whether HHS has developed and implemented mechanisms to measure the outcomes of its sector cybersecurity-related activities.
    Recommendation: To better monitor and provide a basis for improving the effectiveness of cybersecurity risk mitigation activities, informed by the sectors' updated plans and in collaboration with sector stakeholders, the Secretaries of Homeland Security and Transportation (as co-SSAs) should direct responsible officials to develop performance metrics to provide data and determine how to overcome challenges to monitoring the transportation systems sector's cybersecurity progress.

    Agency: Department of Homeland Security
    Status: Open

    Comments: The co-Sector-Specific Agencies (SSAs) for the Transportation Systems Sector, DHS (TSA and Coast Guard) and the Department of Transportation, provided an update on efforts to develop sector cybersecurity metrics. The update described measures under consideration such as tracking the number of sector stakeholders receiving cybersecurity products, monitoring the usefulness of products through satisfaction surveys, and tracking attendance at sector events and seminars encompassing cybersecurity. The co-SSAs plan to report sector cyber activities, progress, and relevant metrics annually through the Critical Infrastructure National Annual Report and through quadrennial updates to the sector-specific plan. The latest sector-specific plan was released in 2015. The proposed metrics have not been formalized in a strategy or plan. We will continue to monitor and evaluate efforts to formalize and implement the proposed metrics to determine whether they address the intent of the recommendation.
    Recommendation: To better monitor and provide a basis for improving the effectiveness of cybersecurity risk mitigation activities, informed by the sectors' updated plans and in collaboration with sector stakeholders, the Secretaries of Homeland Security and Transportation (as co-SSAs) should direct responsible officials to develop performance metrics to provide data and determine how to overcome challenges to monitoring the transportation systems sector's cybersecurity progress.

    Agency: Department of Transportation
    Status: Open

    Comments: The co-Sector-Specific Agencies (SSAs) for the Transportation Systems Sector, DHS (TSA and Coast Guard) and the Department of Transportation, provided an update on efforts to develop sector cybersecurity metrics. The update described measures under consideration such as tracking the number of sector stakeholders receiving cybersecurity products, monitoring the usefulness of products through satisfaction surveys, and tracking attendance at sector events and seminars encompassing cybersecurity. The co-SSAs plan to report sector cyber activities, progress, and relevant metrics annually through the Critical Infrastructure National Annual Report and through quadrennial updates to the sector-specific plan. The latest sector-specific plan was released in 2015. The proposed metrics have not been formalized in a strategy or plan. We will continue to monitor and evaluate efforts to formalize and implement the proposed metrics to determine whether they address the intent of the recommendation.
    Recommendation: To better monitor and provide a basis for improving the effectiveness of cybersecurity risk mitigation activities, informed by the sectors' updated plans and in collaboration with sector stakeholders, the Administrator of the Environmental Protection Agency should direct responsible officials to develop performance metrics to provide data and determine how to overcome challenges to monitoring the water and wastewater systems sector's cybersecurity progress.

    Agency: Environmental Protection Agency
    Status: Open

    Comments: The 2015 water and wastewater sector-specific plan includes a segment on measuring the effectiveness of sector activities that describes the overall principles for collecting data and using the National Annual Report data calls as a tool for assessing performance and reporting on progress within the sector. However, the plan does not state specific measures and the agency acknowledged in its response to our report that it does not collect performance metrics on the effectiveness of its cybersecurity programs for the sector. According to agency officials, the development of performance metrics in collaboration with sector partners is underway. We will continue to follow up to identify any specific metrics developed and implemented and resulting outcome-based reports.
    Director: Melissa Emrey-Arras
    Phone: (617) 788-0534

    1 open recommendations
    including 1 priority recommendation
    Recommendation: To strengthen management of the Direct Loan Program and ensure good customer service for borrowers, the Secretary of Education should direct the Office of Federal Student Aid's Chief Operating Officer to review its methods of providing instructions and guidance to servicers, identifying areas to improve clarity and sufficiency, and ensure consistent delivery of instructions and guidance to ensure program integrity and improve service to borrowers. For example, the Department could consider implementing a detailed, common servicing manual for the Direct Loan program.

    Agency: Department of Education
    Status: Open
    Priority recommendation

    Comments: The Department of Education agreed with this recommendation and has reviewed its guidance to servicers, as of October 2016. It has issued clarifications to servicers in several areas. In addition, the Department had been in the process of an acquisition for a new loan servicing solution but, as of September 2017, is reassessing its acquisition strategy. While the plan for the revised acquisition is not finalized, FSA expects its approach to significantly streamline the process of communicating instructions and guidance to servicers, as well as improve the overall experience for students and borrowers. Upon resolution of its acquisition strategy, Education needs to demonstrate that its final contract for a new loan servicing solution is structured to provide clear and consistent instructions and guidance to servicers to ensure program integrity and improve service to borrowers.
    Director: J. Alfredo Gómez
    Phone: (202) 512-3841

    1 open recommendations
    Recommendation: To enhance HHS's ability to protect public health from the impacts of climate change, the Secretary of HHS should direct CDC to develop a plan describing when it will be able to issue climate change communication guidance to state and local health departments, to better position relevant officials to effectively communicate about the risks that climate change poses to public health and address requirements of the Climate Ready States and Cities Initiative.

    Agency: Department of Health and Human Services
    Status: Open

    Comments: As of December 2016, CDC has taken steps to start developing a communications strategy, and expects this process to include the development of guidance for public health officials to help them more effectively communicate about the health effects of climate change. CDC expects the strategy to be completed by the fall of 2017.
    Director: Cary Russell
    Phone: (202) 512-5431

    2 open recommendations
    Recommendation: To enhance the efforts of the allocated brigades in Africa, and to identify opportunities to enhance brigade mission-specific training, the Secretary of Defense should direct the Secretary of the Army, in coordination with the Commander of Army Forces Command and the Commander of Army Training and Doctrine Command, to conduct an assessment of the Army's approach to providing mission-specific training to regionally aligned forces, including the brigades allocated to AFRICOM, and determine whether any adjustments are needed. In addition to the assessment questions already identified by the Army in the Regionally Aligned Forces Execute Order, this assessment could consider (1) The degree to which the brigades' training--to include the curricula, resources, and execution--should be managed or coordinated at the institutional level. (2) How unit training programs should be resourced and the degree to which dedicated funding may be needed.

    Agency: Department of Defense
    Status: Open

    Comments: The Army has taken positive steps in this area, such as developing a handbook to assist Regionally Aligned Force brigades in planning and training for their missions. Specifically, in November 2015, the Center for Army Lessons Learned published a handbook entitled "Regionally Aligned Forces Brigade Planning". Among other things, this handbook is intended to serve as a starting point for the identification of, planning for, and execution of missions as regionally aligned forces to an Army Service Component Command. Specific to training, this handbook includes guidance for brigades on how they should conduct mission-specific training for the regionally aligned forces mission, including: identifying potential subject matter experts and Army institutions to support mission specific training; providing sample training schedules; and highlighting specific doctrinal publications and key training considerations for use in guiding planning and preparation. According to an official from the Center for Army Lessons Learned, this handbook was intended to provide interim solutions to Regionally Aligned Force units to mitigate some of the difficulties that they have experienced until the Army formally addresses these issues with a permanent solution. While a positive step that could provide some remedies to the concerns cited in our report regarding mission-specific training, this handbook does not directly address our recommendation for the Army to conduct an assessment of its training approach for providing mission-specific training to regionally aligned forcesrecommendation. Thus, this recommendation remains open.
    Recommendation: To enhance the efforts of the allocated brigades in Africa, and to facilitate consistent, and predictable planning for mission-specific equipment requirements and efficient provision of such equipment, the Secretary of Defense should direct the Secretary of the Army, in coordination with the Commander of Army Forces Command and the Commander of USARAF, to: (1) Identify the mission-specific equipment requirements on an appropriate requirements document for the brigades allocated to AFRICOM for security cooperation and other missions in Africa. (2) To the extent practicable, establish a consistent mechanism (e.g., a rotating equipment set, mission-essential equipment list) to ensure that the brigades allocated to AFRICOM are equipped with all known mission-essential equipment at the outset of their missions.

    Agency: Department of Defense
    Status: Open

    Comments: The Army is pursuing the establishment of Africa Activity Sets to provide a range of mission-specific equipment for units conducting activities in Africa, including regionally aligned force brigades, but these equipment sets are still pending validation and funding.
    Director: Mark Goldstein
    Phone: (202) 512-2834

    1 open recommendations
    Recommendation: To ensure that NTIA's evaluation of the Internet multistakeholder community's transition proposal fully considers whether the proposal provides reasonable assurance that NTIA's core goals for the transition will be met, the NTIA Administrator should review relevant frameworks for evaluation, such as the Committee of Sponsoring Organizations of the Treadway Commission framework and the International Organization for Standardization quality management principles, and use the relevant portions of the frameworks to help evaluate and document whether and how the transition proposal meets NTIA's core goals.

    Agency: National Telecommunications and Information Administration
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Mark L. Goldstein
    Phone: (202) 512-2834

    1 open recommendations
    Recommendation: The Chairman of FCC should evaluate the effectiveness of FCC's accessibility-related public outreach efforts and ensure those efforts incorporate key practices identified in this report, such as defining objectives and establishing process and outcome metrics.

    Agency: Federal Communications Commission
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: Michele Mackin
    Phone: (202) 512-4841

    1 open recommendations
    Recommendation: If Congress re-authorizes RIP then, to improve visibility and management of DOD's ability to transition technologies through the program, the Secretary of Defense should direct the Under Secretary of Defense for Acquisition, Technology, and Logistics to establish an overall technology transition goal for RIP.

    Agency: Department of Defense
    Status: Open

    Comments: DOD has not established a technology transition goal for RIP. Although DOD non-concurred with the recommendation, it agreed there is a need to measure annually the transition rate for RIP. In 2016, DOD officials stated they were working on ways to measure and assess technology transitions in the program and, in 2017, DOD did not provide any further update on the status of these efforts, when GAO requested. Until DOD obtains better visibility on RIP technology transition performance, it does not have the data it needs to set an informed technology transition goal.
    Director: Mark L. Goldstein
    Phone: (202) 512-2834

    1 open recommendations
    Recommendation: To improve the accountability and transparency of FirstNet's operations, and ensure that FirstNet is gaining as much knowledge from the early builder projects as possible, FirstNet should strengthen FirstNet's internal control system by fully assessing risks, developing standards of conduct, and evaluating performance against these standards.

    Agency: Department of Commerce: National Telecommunications and Information Administration: First Responder Network Authority
    Status: Open

    Comments: When we confirm what actions the First Responder Network Authority (FirstNet) has taken in response to this recommendation, we will provide updated information.
    Director: Mark Goldstein
    Phone: (202) 512-2834

    2 open recommendations
    Recommendation: To help FCC determine whether its efforts to provide consumers with broadband performance information are effective and meeting consumers' needs, and whether additional efforts--such as a standardized label suggested by FCC's transparency working group--could benefit consumers, FCC should conduct or commission research on the effectiveness of FCC's efforts to provide consumers with broadband performance information and make the results of this research publicly available.

    Agency: Federal Communications Commission
    Status: Open

    Comments: In written comments provided on the draft report, FCC indicated that it concurred with this recommendation. However, as of August 2017, FCC has not taken steps to address this recommendation.
    Recommendation: To help FCC determine whether its efforts to provide consumers with broadband performance information are effective and meeting consumers' needs, and whether additional efforts--such as a standardized label suggested by FCC's transparency working group--could benefit consumers, FCC should establish performance goals and measures under the agency's relevant strategic objectives that allow it to monitor and report on the impact and effectiveness of its efforts.

    Agency: Federal Communications Commission
    Status: Open

    Comments: FCC noted that its fiscal year 2015-2018 strategic plan has strategic objectives related to providing consumers with broadband performance information; however, these objectives lack performance goals that define desired outcomes for FCC's efforts to provide consumers with broadband performance information as well as performance measures to monitor the effectiveness of FCC's efforts.
    Director: Rebecca Gambler
    Phone: (202) 512-8777

    6 open recommendations
    Recommendation: To ensure that CBP's land mobile radio systems are functioning as intended in each location and are meeting user needs, the CBP Commissioner should develop a plan to monitor the performance of its deployed radio systems.

    Agency: Department of Homeland Security: United States Customs and Border Protection
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To ensure the ICE TACCOM program is effectively managed, the Assistant Secretary of ICE should develop a program plan to ensure that the agency establishes the appropriate documentation of resource needs, program goals, and measures to monitor the performance of its deployed radio systems.

    Agency: Department of Homeland Security: Directorate of Border and Transportation Security: Bureau of Immigration and Customs Enforcement
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To improve CBP training efforts, CBP Commissioner should develop and implement a plan to address any skills gaps for CBP agents and officers related to understanding the new digital radio systems and interagency radio use protocols.

    Agency: Department of Homeland Security: United States Customs and Border Protection
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To improve CBP training efforts, CBP Commissioner should develop a mechanism to verify that all Border Patrol and OFO radio users receive radio training.

    Agency: Department of Homeland Security: United States Customs and Border Protection
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To improve ICE training efforts, the Assistant Secretary of ICE should develop and implement a plan to address any skills gaps for ICE agents related to understanding the new digital radio systems and interagency radio use protocols.

    Agency: Department of Homeland Security: Directorate of Border and Transportation Security: Bureau of Immigration and Customs Enforcement
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Recommendation: To improve ICE training efforts, the Assistant Secretary of ICE should develop a mechanism to verify that all ICE radio users receive radio training.

    Agency: Department of Homeland Security: Directorate of Border and Transportation Security: Bureau of Immigration and Customs Enforcement
    Status: Open

    Comments: When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
    Director: William B.Shear
    Phone: (202) 512-8678

    2 open recommendations
    Recommendation: To improve SBA's administration and oversight of the HUBZone program and reduce the risk that firms that no longer meet program eligibility criteria receive HUBZone contracts, the Administrator of SBA should establish a mechanism to better ensure that firms are notified of changes to HUBZone designations that may affect their participation in the program, such as ensuring that all certified firms and newly certified firms are signed up for the broadcast e-mail system or including more specific information in certification letters about how location in a redesignated area can affect their participation in the program

    Agency: Small Business Administration
    Status: Open

    Comments: In response to this recommendation, SBA improved its notifications to newly certified firms but not to other certified firms. For example, SBA's certification letter to firms with principal offices in a redesignated area specifically states that the firm is in a redesignated area, explains the implications of the designation, and notes when the redesignated status will expire. However, we found in March 2016 that SBA had not yet implemented changes to better ensure that all currently certified firms would be notified of changes that could affect their program eligibility. It is important that all certified firms potentially affected by such changes receive information about the changes or are made aware in a timely fashion of any effects on their program eligibility. As of February 2017, SBA had begun to improve its notifications to all firms. According to SBA officials, the agency has started sending program notices to all the firms in its portfolio. They told us that for its most recent notice in February 2017, the agency copied all the e-mail addresses in its HUBZone database and placed them in the e-mail distribution system. According to SBA officials, SBA intends to repeat this effort with subsequent notices. We will continue to monitor SBA's implementation of this activity.
    Recommendation: To improve SBA's administration and oversight of the HUBZone program and reduce the risk that firms that no longer meet program eligibility criteria receive HUBZone contracts, the Administrator of SBA should conduct an assessment of the recertification process and implement additional controls, such as developing criteria and guidance on using a risk-based approach to requesting and verifying firm information, allowing firms to initiate the recertification process, and ensuring that sufficient staff will be dedicated to the effort so that a significant backlog in recertifications does not recur.

    Agency: Small Business Administration
    Status: Open

    Comments: In response to this recommendation, SBA officials told us that they began automating the process to notify firms that were due for recertification. According to the officials, since September 2015, notification e-mails have been sent daily (compared with the former cycle of two times a year). Each firm due for recertification within the next 30 days would receive the notice. SBA sends a second e-mail to firms that have not responded within 45 days of the first notification. According to SBA officials, as of February 2017, this change has not yet eliminated the backlog. SBA officials informed GAO in May 2017 that they have developed risk-based guidance for conducting recertification reviews and requesting supporting documentation. According to SBA, any certified HUBZone small business concern that has received $1 million or more in HUBZone contract dollars since its initial certification (or its most recent recertification) must submit the following: (a) a list of all current employees, identifying the name of the employee, the employee's address, the number of hours worked per month, and the location where the employee performs his/her work; and (b) payroll documentation. SBA intends to complete the implementation of this policy by the third quarter of 2017.
    Director: Andrew Sherrill
    Phone: (202) 512-7215

    3 open recommendations
    Recommendation: To promote effective operation of the U.S. Commission on Civil Rights, Congress may wish to consider amending the commission's authorizing statute to clearly specify the roles and responsibilities of the commission chairperson, commissioners, and staff director, such as who has the authority to develop and implement commission operating policies and procedures, to manage commission staff, and to represent commission decisions and views, including those views expressed on commission letterhead.

    Agency: Congress
    Status: Open

    Comments: A Senate Committee on Appropriations report released on June 16, 2015, which accompanied a bill that provided for the Commission's FY 2016 appropriations, included a provision that directed the Commission to address one of the issues highlighted in our recommendation. Specifically, the report calls for the Commission to limit the use of letterhead to items that reflect the views of the entire Commission.
    Recommendation: To more fully inform congressional consideration of the commission's fiscal year 2016 budget submission, the commission should develop and submit to the appropriate congressional committees a comprehensive workforce plan that assesses skills needed and the appropriate distribution of commission staff to fulfill the agency's mission and statutory responsibilities. This plan should incorporate relevant information from the report that Congress recently directed the commission to provide.

    Agency: Commission on Civil Rights
    Status: Open

    Comments: The Commission on Civil Rights stated that the Commissioners will work closely with the incoming Staff Director, once the President makes an appointment, to develop a comprehensive workforce plan. The agency stressed the importance of involving the new Staff Director in this process. We recognize the importance of involving the Staff Director - the agency's chief administrative official - in an analysis of the Commission's workforce and look forward to the results of this analysis.
    Recommendation: To enhance the commission's consideration of State Advisory Committee work in planning its National Office projects, the commission should increase the visibility of SAC work at commission meetings. For example, the commission could invite SACs to present the results of their work during monthly commission business meetings.

    Agency: Commission on Civil Rights
    Status: Open

    Comments: The Commission on Civil Rights highlighted several initiatives that it plans to consider, pending resource availability, to better highlight and consider the work of its state advisory committees (SAC). First, the agency stated that it would like to re-introduce an annual conference where SAC chairs from around the country can meet and share information. Second, the agency stated that it is looking to leverage technology, such as video conferencing and live streaming, to allow the general public and stakeholders to view SAC meetings. Lastly, the agency stated that the Commission's Chair is planning to develop a list-serve for SAC chairs, send out monthly updates to SACs, and institute quarterly conference calls between the Chair, Vice Chair, and SAC Chairs. We are encouraged by the Commission's efforts to explore ways to better engage with SACs and look forward to the implementation of these planned actions.
    Director: Andrew Sherrill
    Phone: (202) 512-7215

    1 open recommendations
    Recommendation: To enhance communication with contractors about Job Corps program changes, the Secretary of Labor should direct the Assistant Secretary for Employment and Training to review the sufficiency of ETA's guidance for internal notices--including Program Instruction Notices, Policy and Requirements Handbook Change Notices, and Information Notices--to ensure that contractors are provided with adequate notification of program changes before they are expected to be implemented, and an adequate level of information to assist them in carrying out their responsibilities.

    Agency: Department of Labor
    Status: Open

    Comments: DOL concurred with this recommendation, acknowledging the importance of ensuring that Job Corps contractors are provided adequate notification of program changes before their expected implementation. To address this, DOL stated that it would review the sufficiency of Job Corps guidance for internal notices, and execute and distribute any contractual actions, such as modifications, in a timely manner. In FY16, DOL reported that ETA implemented a procedure for developing policy guidance that includes establishing an effective date for program changes that takes into consideration an appropriate amount of time for implementation. The agency referred to Change Notice 15-09 (dated February 4, 2016) and Information Notice 15-34, which extends the implementation date of this change from May 1 to June 1, 2016. GAO requested the written procedure ETA used to develop its policy guidance, but ETA officials were unable to provide it. The officials stated that they would review its response to this recommendation after the beginning of FY17.
    Director: Mark Goldstein
    Phone: (202) 512-2834

    1 open recommendations
    Recommendation: To ensure that application of UBP for fixed Internet access does not conflict with the public interest, the FCC should make use of existing data collection sources to track fixed-Internet UBP implementation and its effects on consumers nationwide so that FCC can take actions, if necessary, to protect consumer interests.

    Agency: Federal Communications Commission
    Status: Open

    Comments: When we confirm what actions FCC has taken in response to this recommendation, we will provide updated information.