Internal Audit Reports

2022 Audit Reports

Operational 

• ACH Payment Fraud
• Emergency Procurement 

Capital

• Interim Westside Fire Station
• North Satellite Renovation and Expansion—Independent Audit Report

Limited Contract Compliance

• In-Ter-Space Services Inc DBA Clear Channel Airports
• The Hertz Corporation

Information Technology

• Account Management (ICT)—Confidential Security Sensitive¹
• Account Management (Aviation Maintenance)—Confidential Security Sensitive¹
• Audit Log Management (Aviation Maintenance)—Confidential Security Sensitive¹

¹_{This information technology audit is security sensitive and is not discussed in public meetings; all or part of the audit report may be exempt from public records disclosure under RCW 42.56.420.} 

2021 Audit Reports

Operational 

• Art Program
• Capitalization of Assets
• Noise Monitor Data Accuracy
• Rent and Concession Deferral Recovery
• South King County Fund
• TNC (Lyft, Inc. & Rasier, LLC.)

Capital

• Baggage Optimization Project  Phase 2 
  • Cost of Delay Memo
• Central Terminal Infrastructure Upgrade Project (Construction and Closeout Phases)
• North Terminal Utilities Upgrade Project Phase 1
• Restroom Renovations Phase 3 Prototype Project

Limited Contract Compliance

• Dilettante Chocolates, Inc.
• Fruit & Flower LLC d/b/a Floret
• Lenlyn Limited
• Seattle-Tacoma International Limousine Association (STILA)

Information Technology

• Biometrics—Confidential Security Sensitive¹ 
• Biometrics ²
• Data Recovery—Confidential Security Sensitive¹
• Continuous Vulnerability Management—Confidential Security Sensitive¹
• Malware Defenses—Confidential Security Sensitive¹
• Payment Card Industry (PCI) Compliance—Confidential Security Sensitive¹

¹_{This information technology audit is security sensitive and is not discussed in public meetings; all or part of the audit report may be exempt from public records disclosure under RCW 42.56.420.} 

² _{This audit report has been redacted for public viewing.} 

2020 Audit Reports

Operational 

• Cash Controls
• Delegation of Authority
• Equipment Acquisition, Monitoring and Disposal
• Ground Transportation - Taxi Cabs
• Public Health Emergency Leave Program

Capital

•  AOA Perimeter Fence Line Standards Project
• Central Terminal Infrastructure Upgrade Project (Bid and Design Phases)
• Service Tunnel Renewal/Replacement Project

Limited Contract Compliance 

• Concourse Concessions, LLC
• E-Z Rent A Car, Incorporated
• Fireworks Galleries, LLC
• McDonald's USA, LLC
• Qdoba Restaurant Corporation

Information Technology

• Criminal Justice Information Systems (CJIS)—Confidential Security Sensitive¹ 
• Inventory & Control of Software Assets—Confidential Security Sensitive¹
• Malware Defenses ICT—Confidential Security Sensitive¹
• Network Password Management—Confidential Security Sensitive¹
• Payment Card Industry (PCI)-Qualified Security Assessor
• Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations and Servers-Confidential Security Sensitive¹

¹_{This information technology audit is security sensitive and is not discussed in public meetings; all or part of the audit report may be exempt from public records disclosure under RCW 42.56.420.} 

2019 Audit Reports

Operational 

• Airport Employee Access—Confidential Security Sensitive
• Architectural & Engineering Consultant Rates
• Diversity In Contracting
• Marine Maintenance Shop

Capital

• Checked Baggage Optimization Project (Phase 1)
• Concourse D Hardstand Holdroom
• Noise Insulation Program
• Shilshole Bay Marina Customer Facilities Project

Limited Contract Compliance 

• Airport Tenant Marketing Program
• Anton Airfood of Seattle, Inc.
• EAN Holdings, LLC
• Mad Anthony's, Inc.
• Sixt Rent A Car

Information Technology

• Closed Network System Security—Confidential Security Sensitive¹
• HIPAA Privacy and Breach Compliance
• HIPAA Security Compliance—Confidential Security Sensitive¹
• Inventory and Control of Hardware Assets—Confidential Security Sensitive¹
• Payment Card Industry (PCI)—Confidential Security Sensitive¹
• Security of Personal Identifiable Information—Confidential Security Sensitive¹

¹_{This information technology audit is security sensitive and is not discussed in public meetings; all or part of the audit report may be exempt from public records disclosure under RCW 42.56.420.} 

2018 Audit Reports

Operational 

• Cash Controls—Sea-Tac Parking Garage
• Cruise-Related Investments
• Delta Lounge—Tenant Reimbursement Agreement
• Disbursements/Accounts Payable
• Employee Parking—Airport Garage
• Fishing and Commercial Operations—Maritime
• Pier 66—Norwegian Tenant Improvement Partnership
• Sea-Tac Utilities
• Transportation Network Companies
• TNC Re-match—Environmental Key Performance Indicator (E-KPI)
• Westside Fire Station

Capital

• IAF (International Arrivals Facility)
• North Satellite (NSAT) Renovation and Expansion Project

Limited Contract Compliance 

• Beecher's Handmade Cheese
• CMC Investments, Inc. dba Dollar Rent-A-Car
• Fox Rent-A-Car, Inc.
• Host International, Inc.
• Sky Chefs, Inc.
• DTG Operations, Inc. dba Thrifty Rent-A-Car

Information Technology

• Aviation Maintenance and Facilities And Infrastructure Data Centers
• Aviation Maintenance—IT Change Management and Patch Management – Confidential Security Sensitive¹
• T2 ParkingSoft System—Confidential Security Sensitive¹

¹_{This information technology audit is security sensitive and is not discussed in public meetings; all or part of the audit report may be exempt from public records disclosure under RCW 42.56.420.} 

2017 Audit Reports

Operational

• Police Department 
• Promotional Hosting Trade/Business and Community Development 
• On/Off-Boarding of Consultants and Contractors 
• Maritime Stormwater Utility 
• Port Travel Credit Card Program 
• Centralized International Support Services Agreement 
• The Airport Club at SEA Lounges 
• Bell Harbor International Conference Center (BHICC) / World Trade Center (WTC) 
• Eastside for Hire, Inc.  

Capital

• International Arrivals Facility 

Limited Contract Compliance 

• Pier 86 Grain Terminal 
• ATZ, Inc. dba Doug Fox Parking 
• Dufry North America, LLC 
• The Hertz Corporation dba Hertz Car Rental 
• Airport Management Services, LLC 
• Bell Street P-66 Parking Revenue 
• Clear Channel Outdoor, Inc., dba Clear Channel Airports 
• Avis Budget Group dba Avis Budget Car Rental
• Cruise Terminals of America-Reissued

Information Technology

• IT Change Management 
• IT Disaster Recovery Capability–Confidential Security Sensitive¹

¹_{This information technology audit is security sensitive and is not discussed in public meetings; all or part of the audit report may be exempt from public records disclosure under RCW 42.56.420.}