In scope of the U.S. Government Publishing Office Catalog and Indexing Program (C&I) and Federal Depository Library Program (FDLP).
Bibliography
Includes bibliographical references.
Summary
We have designated information security as a government-wide high-risk area since 1997. We expanded this high-risk area in 2003 to include protection of critical cyber infrastructure. In 2015, we expanded it again to include protecting the privacy of personally identifiable information. This is the first in a series of four reports that lay out the main cybersecurity areas the federal government should urgently address, beginning with the need for a comprehensive strategy and effective oversight. We have made about 335 recommendations in public reports since 2010 with respect to this area. About 190 of these recommendations were not implemented as of December 2022. Until these are fully implemented, federal agencies will be more limited in their ability to protect private and sensitive data entrusted to them.
Note
Description based on online resource; title from PDF caption (GAO, viewed January 23, 2023).