High-Risk Series: Urgent Actions Are Needed to Address Cybersecurity Challenges Facing the Nation, Statement of Gene L. Dodaro, Comptroller General of the United States, Testimony Before the Subcommittees on Government Operations and Information Technology, Committee on Oversight and Government Reform, House of Representatives [open pdf - 4MB]
"Federal agencies and the nation's critical infrastructures--such as energy, transportation systems, communications, and financial services--are dependent on information technology systems to carry out operations. The security of these systems and the data they use is vital to public confidence and national security, prosperity, and well-being. The risks to these systems are increasing as security threats evolve and become more sophisticated. GAO [Government Accountability Office] first designated information security as a government-wide high-risk area in 1997. This was expanded to include protecting cyber critical infrastructure in 2003 and protecting the privacy of personally identifiable information in 2015."
Government Accountability Office: http://www.gao.gov/