Federal Cybersecurity: America's Data 'Still' at Risk, Staff Report, Committee on Homeland Security and Governmental Affairs, United States Senate, August 2021 [open pdf - 2MB]
From the Executive Summary: "In June 2019, the Permanent Subcommittee on Investigations (Subcommittee) issued a bipartisan report titled: 'Federal Cybersecurity: America's Data at Risk' (the 2019 Report). That report highlighted systemic failures of eight key Federal agencies to comply with Federal cybersecurity standards identified by agencies' inspectors general. [...] This report revisits those same eight agencies two years later. What this report finds is stark. Inspectors general identified many of the same issues that have plagued Federal agencies for more than a decade. Seven agencies made minimal improvements, and only DHS managed to employ and effective cybersecurity regime for 2020. As such, this report find that these seven Federal agencies still have not met the basic cybersecurity standards necessary to protect America's sensitive data."
U.S. Senate Committee on Homeland Security and Governmental Affairs: https://www.hsgac.senate.gov/