In planning and performing our audit of DOJ’s IT systems inventory, we considered DOJ’s internal controls for the purpose of determining our audit procedures. This evaluation was not made for the purpose of providing assurance on the internal control structure as a whole. However, we noted certain matters that we consider to be reportable conditions under the Government Auditing Standards.

Reportable conditions involve matters coming to our attention relating to significant deficiencies in the design or operation of the internal control structure that, in our judgment, could adversely affect DOJ’s ability to manage its IT systems. During our audit we found the following internal control deficiency.

• DOJ does not have in place a means to report accurate, complete, and verifiable costs for its major IT systems.

Because we are not expressing an opinion on DOJ’s internal control structure as a whole, this statement is intended solely for the information and use of DOJ in managing its IT investments. This restriction is not intended to limit the distribution of this report, which is a matter of public record.