The Department of Energy (DoE) still has significant work to do to address open priority recommendations from the Government Accountability Office (GAO) related to insider threats and cybersecurity.
A new report from GAO, published on Monday, outlines that DoE still has 27 open recommendations that it should prioritize, including seven cyber-related recommendations.
“Recent high-profile disclosures of classified information and cyberattacks targeting public and private energy sector components highlight the urgent need to address insider threats in Federal agencies and cybersecurity weaknesses, as indicated in our High Risk List area related to the nation’s critical infrastructure,” GAO Comptroller General Gene Dodaro said in a letter accompanying the report.
“We have seven priority recommendations in this area – two related to insider threats and five related to cybersecurity,” he noted.
The two related to insider threats stem from a 2023 GAO report that called on DoE to fully implement its Insider Threat Program. Dodaro said implementing the recommendations would improve DoE’s ability to “identify insider risks before an incident occurs.”
The additional five…
