All Reports

The Office of the Inspector General performed an audit to determine if the Tennessee Valley Authority’s (TVA’s) corporate deployment of Microsoft 365® was configured to require and enforce the use of multi-factor authentication (MFA) for all accounts.  Our scope was limited to MFA managed through Microsoft Entra® ID.  We determined TVA has required and enforced the use of MFA for all accounts with limited exclusions for service accounts. Additionally, we reviewed a sample of service accounts and determined they were approved and documented in accordance with t

The Office of Inspector General determined risks to Tennessee Valley Authority resulting from lower-than-expected demand by a manufacturer was not considered and actions to address cost overruns were not fully implemented.  Specifically, the manufacturer’s monthly demand averaged approximately 10 megawatts (MWs) of the planned 160 MWs, which could impact TVA’s ability to recover the costs incurred to support the manufacturer.  In addition, analyses conducted by TVA identified causes for cost overruns and action plans were developed to mitigate the risk of cost over

At the request of the Tennessee Valley Authority’s (TVA) Supply Chain, we examined the cost proposal submitted by a company for designing, fabricating, and delivering hydraulic turbine runners and components as specified by TVA.  Our examination objective was to determine if the company’s cost proposal was fairly stated for a contract with expenditures up to $175 million.

The Office of the Inspector General performed an audit of TVA’s transmission network cybersecurity.  The audit scope was limited to a specific type of connectivity within TVA’s transmission network.  The audit objective was to determine the level of cybersecurity in place for this type of connectivity.

In January 2023, the Tennessee Valley Authority (TVA) issued a record of decision to retire and demolish its Cumberland Fossil Plant and replace one of its two units with a natural gas plant.  Subsequently, TVA implemented the Cumberland Energy Solution (CES) project to construct a 1,450-megawatt natural gas-fueled combined cycle (CC) plant.

The Tennessee Valley Authority's (TVA) transmission planning process includes assessing the capacity of the transmission system to reliably deliver power from generation resources to customer loads.  Due to the importance of ensuring TVA’s transmission system can accommodate its generation strategy and ensure adequate system margins to allow for reliable customer supply, we performed an evaluation to determine if TVA’s plans for transmission capacity support (1) planned generation additions and (2) demand growth.

The Tennessee Valley Authority’s (TVA) 5-year Enterprise Technology Plan seeks to transform the way TVA does business through technology and digital innovation.  Digital Finance is one of seven efforts within this multi-year initiative, aimed at modernizing and streamlining TVA’s financial systems and processes.  Modernization of the general ledger (GL) is the first step within Digital Finance. The objectives of the GL Modernization project include implementing an enterprise financial management system with minimal customization, redefining and modernizing TVA’s chart o

The Tennessee Valley Authority (TVA) provides credit cards, known as the TVA One Card, to its employees to make purchases for TVA business, such as materials and supplies, travel, meetings and events, fuel for rental vehicles, management expenses, and services.  TVA transitioned from separate corporate credit cards and purchasing cards to the TVA One Card in 2022 and implemented a new expense management system.  For the 12-month period of May 1, 2023, through April 30, 2024, purchases made on the TVA One Card totaled $86.6 million.

The Tennessee Valley Authority (TVA) has set a goal of increasing its solar capacity to 10,000 megawatts by 2035.  Due to issues in the solar industry resulting in project delays and price increases, we performed an audit of TVA’s solar power purchase agreements (PPAs).  Our audit objectives were to determine (1) how supply chain disruptions, construction and in‑service delays, contract restructuring, and other factors have affected TVA’s solar PPAs and (2) if any restructured PPAs are still in TVA’s financial interest.

The Office of the Inspector General performed an audit of the Tennessee Valley Authority’s (TVA) cybersecurity vulnerability management program.  Our objective was to determine if TVA is compliant with the Cybersecurity and Infrastructure Security Agency (CISA) Binding Operational Directive (BOD) 22-01, Reducing the Significant Risk of Known Exploited Vulnerabilities (KEVs), and CISA BOD 19-02, Vulnerability Remediation Requirements for Internet-Accessible Systems.