The Department of Energy’s Office of Inspector General has warned that the DOE has yet to address a number of previously identified cyber vulnerabilities.
In its report published Tuesday, the OIG said failure to remediate vulnerabilities may expose the department’s information systems and data to malicious cyber actors.
What Did DOE OIG Find?
The OIG assessed the effectiveness of the DOE’s unclassified cybersecurity program to protect the department’s data and information systems, a requirement under the Federal Information Security Modernization Act, or FISMA, of 2014.
The OIG found that while the department has taken actions and resolved 19 of 63 cyber-related recommendations from previous audits, 44 remained unaddressed. The agency watchdog also identified 79 new recommendations throughout the fiscal year related to DOE’s cybersecurity programs.
One of the vulnerabilities cited in its report involves management processes in some department sites that the inspector general found were “not fully effective in identifying, addressing, and/or remediating vulnerabilities.”
The report also revealed that some DOE sites did not fully develop or maintain adequate policies and procedures for the design and implementation of security controls.
The OIG advised DOE to close findings from prior years and implement the latest federal cybersecurity requirements to protect data and information systems.
Related Articles
The Information Technology Industry Council has submitted detailed recommendations to the White House Office of Science and Technology Policy calling for a coordinated federal framework to accelerate U.S. leadership in AI. The association said overlapping regulations and inconsistent federal guidance are slowing AI innovation and urged the administration to align policy, workforce and acquisition reforms with the pace of technology. With calls growing for cohesive federal AI standards and modernization across agencies, Potomac Officers Club’s Artificial Intelligence Summit on March 19 will convene top voices from government and industry to explore how unified policy, infrastructure and data strategies can sustain
The U.S. Patent and Trademark Office is seeking a new chief artificial intelligence officer, or CAIO, to lead enterprisewide adoption of AI and machine learning. Connect with leading innovators and government experts at the Potomac Officers Club’s 2026 Artificial Intelligence Summit on March 19. Explore how AI, machine learning and automation are transforming federal operations, defense and industry. Save your spot now! According to a notice posted on USAJobs, the CAIO will serve as the principal adviser to the chief information officer and deputy CIO, focusing on delivering business value through AI and machine learning implementation. USPTO will accept applications
President Donald Trump has nominated Adm. Kevin Lunday to serve as commandant of the U.S. Coast Guard. Join the Potomac Officers Club’s 2025 Homeland Security Summit to learn about the latest in homeland security from Secretary Kristi Noem and other speakers from government and industry. According to a congressional notice, the Senate officially received the president’s nomination of Adm. Lunday on Oct. 23. The nomination was referred to the Senate Committee on Commerce, Science and Transportation for review. This follows a May announcement by Secretary of Homeland Security Kristi Noem, a 2025 Wash100 Award recipient, who revealed that the president intended to nominate Lunday. Who