Jan. 9, 2019

Summary of Reports Issued Regarding Department of Defense Cybersecurity From July 1, 2017, Through June 30, 2018 DODIG-2019-044

Our objective was to (1) summarize unclassified and classified reports issued and testimonies made from the DoD oversight community and the Government Accountability Office (GAO) between July 1, 2017, and June 30, 2018, that included DoD cybersecurity issues; (2) identify cybersecurity risk areas for DoD management to address based on the five functions of the National Institute of Standards and Technology (NIST), “Framework for Improving Critical Infrastructure Cybersecurity,” April 16, 2018 (Cybersecurity Framework); and (3) identify the open DoD cybersecurity recommendations.

Jan. 3, 2019

U.S. Army Corps of Engineers Oversight of Temporary Emergency Power Contracts Awarded for Hurricanes Harvey and Irma DODIG-2019-043

We determined whether U.S. Army Corps of Engineers (USACE) Pittsburgh District properly monitored contractor performance on temporary emergency power contracts in accordance with applicable Federal and DoD contracting guidance for the disaster recovery response to Hurricanes Harvey and Irma.

Jan. 3, 2019

DoD Civilian Pay Budgeting Process DODIG-2019-041

We determined whether the Office of the Under Secretary of Defense (Comptroller)’s (OUSD[C]) management and oversight of the Military Services’ civilian pay (CIVPAY) budget process assured that the Services’ budgets represented the actual cost of their civilian workforce.

Dec. 28, 2018

Evaluation of Social Media Exploitation Procedures Supporting Operation Inherent Resolve (OIR) DODIG-2019-042

The report is classified. To file a Freedom of Information Act request, please submit a request to FOIA Online.

Dec. 27, 2018

U.S. Air Forces in Europe Plans for the Procurement and Pre-Positioning of Deployable Air Base Kits DODIG-2019-040

We determined whether U.S. Air Forces in Europe (USAFE) developed a plan for procuring and pre‑positioning Deployable Air Base System-Facilities, Equipment, and Vehicles Kits (Deployable Air Base Kits) within the U.S. European Command area of responsibility.

Dec. 21, 2018

Reporting of Improper Payments for the Defense Finance and Accounting Service Commercial Pay Program DODIG-2019-039

We determined whether the DoD developed accurate and complete improper payment estimates for the Defense Finance and Accounting Service (DFAS) Commercial Pay Program during the first two quarters of FY 2018.

Dec. 19, 2018

Followup of Delinquent Medical Service Account Audits DODIG-2019-038

We determined whether the Office of the Under Secretary of Defense (Health Affairs), Defense Health Agency (DHA), Navy Bureau of Medicine and Surgery (BUMED), U.S. Army Medical Command (MEDCOM), and Air Force Surgeon General implemented actions to correct problems identified in six prior DoD Office of Inspector General (OIG) reports related to the collection of outstanding balances of medical service accounts (accounts) for patients authorized to receive care in military medical treatment facilities. We also summarized systemic issues related to accounts identified in these prior reports, as well as new issues identified during our followup review.

Dec. 19, 2018

Project Announcement: Followup Audit on the Corrective Actions Taken by DoD Components in Response to DoD Red Team Assessments (Project No. D2019-D000CR-0075.0000)

We plan to begin the subject audit in January 2019. Our objective is to determine whether DoD Red Teams and DoD Components took actions to correct problems identified in Report No. DODIG-2013-035, "Better Reporting and Certification Processes Can Improve Red Teams' Effectiveness," December 21, 2012. Furthermore, we will determine whether DoD Red Teams supported operational testing and combatant command exercises to identify network vulnerabilities, threats, and other security weaknesses affecting DoD systems, networks, and facilities, and whether corrective actions were taken to address the findings of the Red Teams. We will consider suggestions from management on additional or revised objectives.

Dec. 13, 2018

System Review Report on the Defense Commissary Agency Internal Review DODIG-2019-035

We reviewed the system of quality control for the internal audit organization Defense Commissary Agency (DeCA) Internal Review (IR) in effect for the period ending January 31, 2018. The system of quality control includes DeCA IR’s organizational structure and policies adopted and procedures established to provide it with reasonable assurance of conforming to Government Auditing Standards (GAS). The elements of quality control as described in GAS 3.83 include the audit organization’s leadership, emphasis on performing high quality work, and policies and procedures designed to provide reasonable assurance of complying with professional standards and applicable legal and regulatory requirements.

Dec. 13, 2018

DoD Management of Software Applications DODIG-2019-037

We determined whether DoD Components rationalized their software applications by identifying and eliminating any duplicative or obsolete applications. This audit focused on the Marine Corps, the Navy, and the Air Force. We did not include the Army in our audit scope because the Army Audit Agency reviewed software application inventories and software application rationalization at its data centers.