Government Accountability Office logo. GAO urged ONCD to fix gaps in federal cyber workforce data.
The Government Accountability Office urged ONCD to fix gaps in federal cyber workforce data.
Logo/gao.gov
//

GAO Urges Action to Address Gaps in Federal Cyber Workforce Data, Initiative Assessments

3 mins read

The Government Accountability Office has called on the Office of the National Cyber Director to take urgent steps to improve the quality, completeness and evaluation of federal cyber workforce data, citing significant gaps in information on both the size and cost of civilian and contractor personnel performing IT, cybersecurity and cyber-related functions.

According to a GAO report released Thursday, most of the 23 federal civilian departments and agencies reviewed could not fully identify their cyber workforce or its total costs. Agencies reported at least 63,934 federal employees and 4,151 contractor staff in cyber roles at a combined annual cost of about $14.6 billion, but GAO said the figures were incomplete and unreliable.

The watchdog found that 22 agencies reported partial or no contractor data, 19 lacked documented quality assurance processes and 17 did not have standardized procedures for identifying cyber employees. GAO warned that without high-quality data, the government cannot ensure informed workforce decisions, noting that such data becomes especially critical during administration transitions when incoming leaders need to assess cyber readiness.

GAO Found Agencies Lacking Effectiveness Assessments

GAO also determined that while 22 agencies reported using various initiatives to strengthen their cyber workforce through hiring, reskilling, training and retention, most did not assess the effectiveness of those measures. Nine agencies evaluated certain aspects of costs, benefits and performance, and five used assessments to expand some programs, but the majority cited a lack of visibility into data needed to support such reviews.

The report noted that the ONCD’s 2023 National Cyber Workforce and Education Strategy does not require agencies to evaluate such initiatives, limiting the ability of ONCD and agencies to prioritize those with the highest return on investment.

GAO Recommendations

GAO made four recommendations for ONCD, to be implemented in coordination with the Office of Management and Budget and other relevant entities. The ONCD is encouraged to:

  • Address gaps in cyber workforce size and cost data used by agency-level chief information officers and chief human capital officers.
  • Address the lack of documented quality assurance processes in cyber workforce data.
  • Address variances in identifying cyber personnel in workforce data.
  • Direct agencies to assess the effectiveness of cyber workforce initiatives using costs, benefits, performance and other relevant metrics.

ONCD neither agreed nor disagreed with the recommendations.

GAO’s review builds on previous work in which it made 64 recommendations since 2019 to improve cyber workforce management, 32 of which remain unimplemented.

Related Articles

Deborah Gracio. The 35-year PNNL veteran will be the next director of the Battelle-run national lab.
Deborah Gracio Named PNNL Director

Deborah Gracio, a 35-year Pacific Northwest National Laboratory veteran, will take on the role of PNNL director in October. Battelle said Thursday Gracio will succeed Steven Ashby, who announced his intent to step down as head of PNNL earlier this year. Battelle operates the national lab for the Department of Energy. “Deb is a visionary leader with deep scientific roots and a steadfast commitment to mission,” said Lou Von Thaer, president and CEO of Battelle and a 10-time Wash100 awardee. “Her insight, experience, and dedication to advancing science in service to the nation make her the ideal leader for PNNL’s

Michael Santaspirt. The Army DEVCOM Armaments Center chief futures officer commented on the partnership with IQT.
Army DEVCOM Armaments Center Partners With IQT to Address Tech Capability Gaps

The U.S. Army Combat Capabilities Development Command, or DEVCOM, Armaments Center has partnered with the CIA and In-Q-Tel to advance Army priorities and accelerate the development and deployment of military capabilities to warfighters in support of national security missions. Army to Leverage IQT’s Tech Scouting Infrastructure “Our relationship with IQT combines specific U.S. Army technology needs with IQT’s global technology scouting and assessment network to ensure that we deliver innovative capabilities when and where they’re required,” Michael Santaspirt, chief futures officer at Army’s DEVCOM Armaments Center, said in a statement published Thursday. IQT is a not-for-profit strategic investor that identifies

Office of the Director of National Intelligence seal. US and Canada warn tech startups about international pitch risks.
Western Tech Startups Urged to Guard Against Exploitation in International Pitch Competitions

The Office of the Director of National Intelligence’s National Counterintelligence and Security Center, alongside the U.S. Air Force Office of Special Investigations, the Canadian Security Intelligence Service and ODNI’s Office of Economic Security and Emerging Technology, has issued new guidance to help Western technology startups avoid exploitation at international pitch competitions.  The 2025 Intel Summit, hosted by the Potomac Officers Club, will bring together top leaders from across the intelligence community and industry to discuss how the U.S. can stay ahead in an era of rapid technological change and complex global threats. From AI-driven analysis and quantum advances to zero