Skip to main content

Federal Information Security Issues

GAO-09-817R Published: Jun 30, 2009. Publicly Released: Jun 30, 2009.
Jump To:
Skip to Highlights

Highlights

This letter responds to congressional request that GAO address additional questions arising from the May 19, 2009, hearing on federal information security held by the Subcommittee on Government Management, Organization, and Procurement. In that hearing, we discussed the current state of information security throughout the federal government and agency efforts to comply with the requirements of the Federal Information Security Management Act of 2002 (FISMA). Congress had the following two questions: (1) Please comment on the need for improved cyber security relating to S.773, the proposed Cybersecurity Act of 2009; and (2) Please provide recommendations to improve the Federal Information Security Management Act.

Full Report

GAO Contacts

Office of Public Affairs

Topics

AccountabilityAgency evaluationClassified defense informationComputer securityCyber securityFraudIdentity theftInformation securityInformation security managementInformation security regulationsInformation systemsInternal controlsOperational testingPerformance appraisalProgram evaluationProposed legislationRegulatory agenciesReporting requirementsRisk managementStandardsStrategic information systems planningSystems evaluationPolicies and procedures