GAO: Federal Government Should Prioritize Cybersecurity, IT Acquisitions Management

GAO: Federal Government Should Prioritize Cybersecurity, IT Acquisitions Management
NSA-CISA-FBI-UK NCSC Cybersecurity Advisory

The Government Accountability Office (GAO) has called on the federal government to address two high-risk areas: ensuring cybersecurity and improving information technology acquisitions and operations.

GAO recommended that the federal government develop and implement a comprehensive strategy for national cybersecurity and global cyberspace, mitigate supply chain risks and improve the federal response to cyber incidents, according to a report published Friday.

When it comes to IT acquisition management, agencies should sustain leadership and broaden capacity to better manage and modernize IT, ramp up efforts to replace obsolete IT systems and address IT acquisition issues, such as the need to reduce duplicative IT contracts, to achieve cost savings.

The congressional watchdog said it has made 4,700 recommendations since 2010 and about 75 percent of those have been implemented by federal agencies. However, agencies have yet to take action on more than 750 cybersecurity-related recommendations and over 400 recommendations on IT management.

Defense Cybersecurity ForumTo register for this virtual forum, visit the GovConWire Events page.

You may also be interested in...

Defense Innovation Unit

DIU Seeks New Access Security Tool for Commercial Engagements

The Defense Innovation Unit (DIU) is interested in using commercial multifactor authentication to facilitate secure access to industrial systems not directly connected to U.S. military networks. DIU is in search of a tool that would verify identities on platforms not accessible via a military-issued common access card. DIU intends to this tool to securely collaborate with commercial partners.