Audit · Tennessee Valley Authority OIG · 2022-01-11 · about Tennessee Valley Authority
Report
Title
Remote Application and Desktop Virtualization
Submitting OIG
Tennessee Valley Authority OIG
Component agency
Tennessee Valley Authority
Type
Audit
Publication date
2022-01-11
Summary
The Office of the Inspector General OIG audited the Tennessee Valley Authority’s (TVA) use of remote application and desktop virtualization due to the risk of increased remote users during the COVID-19 pandemic and recent publicized remote access vulnerabilities. We found several areas where TVA was consistent with cybersecurity remote access best practices. However, we identified gaps in TVA’s configuration settings, architectural design, and administrative procedures.
Recommendations (1)
#
Status
Text
ISS.1-1
Closed
We recommend the Vice President and Chief Information and Digital Officer, Technology and Information, review the identified gaps and remediate as appropriate.