The Government Accountability Office has recommended five strategies the agency believes can help the federal government strengthen the security of federal information systems and critical infrastructure in the U.S.
GAO said Wednesday federal agencies should consistently implement risk-based entity-wide data security programs; optimize cyber incident detection, response and mitigation functions; and expand cyber workforce planning and training programs.
The congressional watchdog also urged agencies to increase oversight of efforts to secure personally identifiable information.
GAO noted its recommendations are generally consistent with or similar to proposed cybersecurity measures from the Commission on Enhancing National Cybersecurity and the Center for Strategic and International Studies.
The watchdog agency has issued approximately 2,500 information security recommendations to federal agencies over the past several years and found that agencies have not implemented nearly 1,000 of those recommendations as of February.