The Government Accountability Office has called on the Department of State’s chief information officer to address 95 open recommendations related to cybersecurity and IT acquisition and management.
In a report published Wednesday, the congressional watchdog said implementing the recommendations will enable the State Department to deter threats, improve programs, save taxpayer dollars and ensure compliance with relevant regulations.
Explore the advanced technologies that agencies are using to modernize processes at the Potomac Officers Club’s 2026 Digital Transformation Summit on April 22. At the event, you will hear directly from government and industry leaders about ongoing initiatives and future strategies to harness cutting-edge tools to support mission execution. Get your tickets today.
Table of Contents
What Are GAO’s Key Recommendations for the State Department?
GAO identified two priority recommendations that require immediate action.
The first priority recommendation calls for a department-wide risk portfolio to eliminate gaps in its understanding of cyberthreats and ensure that it can protect its systems.
The second priority recommendation is about validating that all IT systems are authorized to operate within the department.
GAO also urged the State CIO to implement technical security controls such as comprehensive event logging, complete annual reviews of its IT portfolio, develop strategies to attract and retain IT talent and consistently track software license usage.
Which Agencies Have Received CIO Recommendations From GAO?
GAO previously called on other agency chief information officers to address cybersecurity and IT management deficiencies. In a 2025 report, the watchdog urged the Treasury Department’s CIO to resolve 21 open recommendations tied to multifactor authentication implementation, event logging requirements, mobile device inventory management and other issues. GAO also recommended that Treasury ensure its artificial intelligence applications comply with Executive Order 13960.
GAO issued a similar guidance to the Small Business Administration, calling on the agency’s CIO to address 20 open recommendations designated as high risk. The recommendations for SBA include actions to strengthen privacy workforce management, improve project risk mitigation and resolve cybersecurity and IT control deficiencies.
Related Articles
House Armed Services Committee Chairman Mike Rogers, R-Ala., said he is seeking $450 billion in defense funding through an upcoming reconciliation bill and preparing to use the fiscal year 2027 National Defense Authorization Act to expand the defense industrial base, Breaking Defense reported Wednesday. In an exclusive interview with the publication, Rogers said he is coordinating with Senate Armed Services Committee Chairman Roger Wicker, R-Miss., to secure the funding and has already informed congressional leadership of the plan. Why Is the $450B in Reconciliation Funding Important to the FY27 Defense Plan? According to Rogers, the $450 billion figure is required
The Department of Energy’s Los Alamos National Laboratory has established a new center that aims to unify and expand its quantum research capabilities across national security, quantum computer science, quantum algorithms and workforce development. As federal research organizations continue to advance cutting-edge computing capabilities, government and industry leaders are closely watching how innovation is reshaping the public sector. The Potomac Officers Club’s 2026 Digital Transformation Summit offers a forum to explore how agencies are navigating technological change and modernization across missions. Book your spot at this April 22 event! What Initiatives Will the LANL Quantum Computing Center Support? LANL said
The U.S. Coast Guard is finalizing delivery activities for its 18th mission-ready HC-130J long-range surveillance aircraft, marking continued progress in expanding and modernizing its fixed-wing aviation fleet. The aircraft, designated CGNR 2018, is undergoing final delivery steps at L3Harris’ integrated mission systems facility in Waco, Texas, the Coast Guard said Wednesday. Upon acceptance, the aircraft will support the Coast Guard’s planned transition of Air Station Sacramento, California, from C-27J aircraft to the HC-130J platform later this year—the first expansion of HC-130J operations beyond the service’s current hubs in Elizabeth City, North Carolina; Kodiak, Alaska; and Barbers Point, Hawaii. The Coast