Recommendations Database

Jump To:

As of February 1, 2023, there are 4825 open recommendations that still need to be addressed. 464 of these are priority recommendations, those that we believe warrant priority attention. Learn more about our priority designation on our Recommendations page.

Search for open recommendations by agency, topic, subject, or keyword/phrase below, or view all open recommendations by agency.

Skip to main search results
Clear All Filters
1 - 4 of 4 Recommendations, including 0 Priority Recommendations

Rail and Air Labor Relations: National Mediation Board Made Progress on GAO Recommendations but Needs to Address Management Issues

Show
1 Open Recommendations
Agency Recommendation Status
National Mediation Board The Chairman of NMB should develop a systematic process to track and address issues reported through the NLRB IG hotline or otherwise communicated to NMB by the NLRB IG. (Recommendation 1)
Open

NMB agreed with this recommendation and did not specify plans to address it. We will monitor agency efforts to implement this recommendation.

National Mediation Board: Additional Actions Needed to Fully Implement Prior GAO Recommendations and Improve Agency Management and Oversight

Show
1 Open Recommendations
Agency Recommendation Status
National Mediation Board The Chairman of the NMB should document NMB's authorizations for its use of cloud services approved through FedRAMP and submit the authorizations to the FedRAMP Program Management Office. (Recommendation 1)
Open

NMB agreed with this recommendation. In July 2021, NMB approved a new Information Technology Security Policy, which requires the agency to document its authorizations for its use of cloud services approved by FedRAMP. NMB has documented the authorizations for its FedRAMP-approved cloud services, but operates two cloud services that are not approved. An agency official said that the agency is working to identify FedRAMP-approved replacements for these services, but did not provide a timeframe. Until those cloud services are replaced with FedRAMP-approved services, this recommendation will

National Mediation Board: Strengthening Planning and Controls Could Better Facilitate Rail and Air Labor Relations

Show
2 Open Recommendations
Agency Recommendation Status
National Mediation Board In order to improve NMB's planning and make the most effective use of its limited resources, the Chairman of the National Mediation Board should develop and fully implement key components of an information security program in accordance with the Federal Information Security Management Act of 2002.
Open – Partially Addressed

In April 2022, we reported in GAO-22-105266 that NMB has taken some steps to further implement key information security practices, but has not fully implemented this recommendation. Specifically, we found that NMB has taken steps to implement its security program, such as developing and documenting an information technology security policy. We found that NMB was following five of eight key information security practices. In accordance with FISMA's requirements, NMB has updated the system security plan for the enterprise network, provided security awareness training, and improved its remedial

National Mediation Board In order to improve NMB's planning and make the most effective use of its limited resources, the Chairman of the National Mediation Board should establish a privacy program that includes conducting privacy impact assessments and issuing system of record notices for systems that contain personally identifiable information.
Open – Partially Addressed

In April 2022, we reported in GAO-22-105266 that NMB has taken steps to implement information privacy practices, such as conducting privacy impact assessments, but has not fully implemented this recommendation. Specifically, we found that NMB was following three of four key information privacy practices. However, NMB has not fully updated its policies and procedures for information privacy protections. We previously reported that the agency's privacy policy reflects outdated roles and responsibilities. For example, the policy includes the role of the chief of staff position, which no longer

Have a Question about a Recommendation?

For questions about a specific recommendation, contact the person or office listed with the recommendation. For general information about recommendations, contact GAO's Audit Policy and Quality Assurance office at (202) 512-6100 or apqa@gao.gov.