Port of Seattle Commission 
AUDIT COMMITTEE 
September 24, 2020  1:30 p.m. 
To be held in virtually via Skype in accordance with the Governor's 'Safe Start' order and Proclamation 20-28. You may
view the full meeting live at meetings.portseattle.org. To listen live, call in at +1 (425) 660-9954 and code 189811308# 
Committee members:                                     Also attending: 
Commissioner Ryan Calkins, Chair                              Glenn Fernandes, Internal Audit Director 
Commissioner Stephanie Bowman                             Aaron Pritchard, Commission Issues and Policy Manager 
Committee Public Member Christina Gehrke                     Michelle Hart, Commission Clerk 
Lauren Smith, Deputy Commission Clerk 
ORDER OF BUSINESS 
1.  Call to Order 
2.  Approval of Minutes  May 7 and June 11, 2020. 
External Audits 
3.  Office of the Washington State Auditor  Accountability Audit Opening 
Joseph Simmons, Program Manager; Angela Funamori, Assistant State Auditor and Maddie Frost-
Shaffer, Assistant Audit Manager 
Updates and Approvals (Glenn Fernandes, Director, Internal Audit)
4.  2021 Proposed Budget  For Approval 
5.  Internal Audit Charter  For Approval 
6.  2020 Audit Plan Update 
7.  Open Issue Follow-up Update 
Operational Audits (Glenn Fernandes, Director, Internal Audit) 
8.  AOA Perimeter Fence Line Standards Project 
Information Technology Audits (Glenn Fernandes, Director, Internal Audit) 
9.  Secure Configuration for Hardware and Software on Mobile Devices, Laptops, 
Workstations and Servers1 
10.  Malware Defenses (ICT)1 
11.  Payment Card Industry (PCI) - Qualified Security Assessor 
12.  Criminal Justice Information Systems (CJIS)1 
Limited Contract Compliance Audits2 (Glenn Fernandes, Director, Internal Audit) 
13.  E-Z Rent A Car, Incorporated 
14.  Concourse Concessions, LLC 
15.  Fireworks Galleries, LLC  No Issues Noted 

1 These information technology audits are security sensitive and are not discussed in public meetings; all or part of their audit
reports may be exempt from public records disclosure under RCW 42.56.420. 
2 Limited Contract Compliance items are presented during the meeting only when there are findings, or by Committee's request.

Concluding Business 
16.  Committee Comments 
17.  Adjournment 

















1 These information technology audits are security sensitive and are not discussed in public meetings; all or part of their audit
reports may be exempt from public records disclosure under RCW 42.56.420. 
2 Limited Contract Compliance items are presented during the meeting only when there are findings, or by Committee's request.