The OIG makes recommendations to the United States Postal Service to correct deficiencies and encourage improvements in the safety, economy, efficiency, and management of the Department’s programs and operation.

Our report findings and conclusions explain the basis for the specific corrective actions we recommend. This Recommendation Dashboard provides more information than ever before about the current status of OIG recommendations, which we plan to update on a weekly basis.

*The Open Recommendations Financial Value does not include amounts that were not publicly released due to concerns about information protected under the Freedom of Information Act.*

Fiscal Year Report Title Issue Date Report Numbersort descending Financial Value Status Recommendation Management Response
2020 Automatic Indemnity Claim Payments 03/02/2020 19-008-R20 $0 Open R - 2-- Some or all of the recommendation is not publicly available due to concerns with information protected under the Freedom of Information Act. Agree
2020 Cybersecurity Incident Detection and Response Capability 07/29/2020 19-012-R20 $0 Open R - 2-- Determine which incident detection and response metrics are meaningful to the organization and establish a process to measure the effectiveness of the incident detection and response capability. Disagree
2020 Cybersecurity Incident Detection and Response Capability 07/29/2020 19-012-R20 $0 Open R - 3-- Track one-to-one alignment of actual investments with Cybersecurity Decision Analysis Report III Enhancement and Maturity requests for each project. Disagree
2020 Cybersecurity Incident Detection and Response Capability 07/29/2020 19-012-R20 $0 Open R - 1-- Some or all of the recommendation is not publicly available due to concerns with information protected under the Freedom of Information Act. Agree
2020 Business Application Review of the HERO System 08/24/2020 19-016-R20 $26,823,859 Open R - 1-- Update Management Instruction AS-800-2014-4, Cloud Computing Policy, to include early demonstrations of system functionality with key stakeholders to validate and verify the alignment of business needs and the technical capabilities before purchasing any cloud software solutions. Agree
2020 Business Application Review of the HERO System 08/24/2020 19-016-R20 $0 Open R - 2-- Update Management Instruction AS-800-2014-4, Cloud Computing Policy, to state the Vice President, Information Technology, must approve a waiver for cloud solution purchases when the policy is not followed. Agree
2020 Business Application Review of the HERO System 08/24/2020 19-016-R20 $0 Open R - 3-- Update Supplying Principles and Practices to state the processes outlined in Management Instruction AS-800-2014-4, Cloud Computing Policy, must be completed before awarding cloud solution contracts. Agree
2020 Business Application Review of the HERO System 08/24/2020 19-016-R20 $0 Open R - 4-- Update the Postal Service Handbook AS-805, Information Security, to define the interim security assessment process, document the associated risks and mitigation plans, ensure proper document retention, and complete the process prior to the purchase of a cloud solution. Agree
2020 Business Application Review of the HERO System 08/24/2020 19-016-R20 $0 Open R - 5-- Retrieve the missing HERO hard copy invoice and store it in the Contract Authoring and Management System. Agree
2020 Controls Over Purchasing and Maintaining IT Equipment 08/17/2020 19-017-R20 $0 Open R - 4-- Coordinate with the Vice President, Chief Information Security Officer, to develop a process to scan the Postal Service network for vulnerabilities without negatively affecting network and application performance. Agree

Pages

This Recommendation Dashboard provides information on recommendations that the Postal Service can address without external party action. To view closed recommendations, click here. Also, click here to see recommendations that may require additional action by external parties.

Audit Directorates