Evaluation of Architect of the Capitol's Supply Chain Risk Management (2024-0003-IE-P)

Report Information

Date Issued

September 4, 2025

Report Number

2024-0003-IE-P

Report Type

Inspection / Evaluation

Joint Report

Agency Wide

Yes (agency-wide)

Questioned Costs

Funds for Better Use

View report on Oversight.gov

Recommendations

Date Issued

September 3, 2025

Recommendation 1a
We recommend the Architect of the Capitol perform an independent risk assessment to identify
and evaluate potential risks within the agency’s supply chain, including risks related to cybersecurity, geopolitical factors, vendor…

Read more about Recommendation 1a We recommend the Architect of the Capitol perform an independent risk assessment to identify and evaluate potential risks within the agency’s supply chain, including risks related to cybersecurity, geopolitical factors, vendor…

Date Issued

September 3, 2025

Recommendation 2
We recommend that the agency work with the offices and jurisdictions to define, document, and
implement risk management processes for offices and jurisdictions to consistently identify, track,
and manage risks applicable to them.

Read more about Recommendation 2 We recommend that the agency work with the offices and jurisdictions to define, document, and implement risk management processes for offices and jurisdictions to consistently identify, track, and manage risks applicable to them.

Date Issued

September 3, 2025

Recommendation 3
We recommend that the agency work with the offices and jurisdictions to develop and document
risk tolerance thresholds for strategic objectives.

Read more about Recommendation 3 We recommend that the agency work with the offices and jurisdictions to develop and document risk tolerance thresholds for strategic objectives.

Report Information

Recommendations

Recommendation number 1 -

Recommendation number 2 -

Recommendation number 3 -