GAO found common problems including “management accountability issues and gaps in standards and quality control.” Image: dencg/Shutterstock.com
By: FEDweek StaffFederal agencies’ implementation of the Federal Information Security Modernization Act “continued to be mostly ineffective” in 2021-2022, GAO has said, with 18 of 23 Cabinet departments and major independent agencies rated as “not effective” in the former year and 15 in the latter.
That 2014 law requires federal agencies to strengthen information security programs but in a review of agency data and inspector general reports, the GAO found common problems including “management accountability issues and gaps in standards and quality control.”
The report said that while OMB and other entities provide metrics to evaluate FISMA implementation, agencies and IGs say that some of those metrics “are not useful because they do not always accurately evaluate information security programs. Agencies and IGs reported that metrics should be clearly tied to performance goals, account for workforce issues and agency size, and incorporate risk.”
Best practices that agency officials identified to GAO as being effective in implementing FISMA included internal communication, leadership commitment and centralized policies and procedures.
OMB did not take a position on GAO recommendations that it set metrics that address the key causes of ineffective programs.
Congress Leaving Key Policy, Funding Decisions to the Fall
Guidance on ‘Schedule G’ Stresses Political Oversight
OPM Tells Agencies to Allow ‘Religious Expression’ in Federal Workplace
Agency RIFs, Reorganizations Starting to Take Shape
Order Formally Launches ‘Schedule Policy/Career,’ Adds Category of Appointees
Court Allows Order against Unions to Remain, but Congress Eyes Stepping In
See also,
Top 10 Provisions in the Big Beautiful Bill of Interest to Federal Employees
A Pre-RIF Checklist for Every Federal Employee, From a Federal Employment Attorney
Work Longer or Take the FERS Supplement Now: Which is Better?
Doubling Your TSP (C Fund vs G Fund)
