Cybersecurity and Information Technology: Federal Agencies Need to Strengthen Efforts to Address High-Risk Areas, Statement of Carol C. Harris, Director, Information Technology and Cybersecurity, Testimony Before the Subcommittee on Government Operations, Committee on Oversight and Reform, House of Representatives [open pdf - 822KB]
From the Government Accountability Office (GAO) Highlights: "The nation's critical infrastructures and federal agencies are dependent on IT [information technology] systems and electronic data to carry out operations and to process, maintain, and report essential information. Each year, the federal government spends more than $100 billion on cybersecurity and IT investments. GAO has long stressed the continuing and urgent need for effective cybersecurity, as underscored by recent events that have illustrated persistent and evermore sophisticated cyber threats and incidents. Moreover, many IT investments have failed, performed poorly, or suffered from ineffective management. Accordingly, GAO has included information security on its high-risk list since 1997 and added improving the management of IT acquisitions and operations in 2015. In its March 2021 high-risk series update, GAO reported that significant attention was needed in both of these important areas. GAO was asked to testify on federal agencies' efforts to address cybersecurity and the management of IT. For this testimony, GAO relied on selected products it previously issued."
Government Accountability Office: http://www.gao.gov/