GAO Calls for Improved Data Privacy Protections

1 year ago AndyC

The
most
recent
in
a
series
of
US
Government
Accountability
Office
(GAO)
reports
on
the
state
of
cybersecurity
across
the
federal
government
makes
specific
recommendations
about
the
collection,
use

GAO Calls for Improved Data Privacy Protections

The
most
recent
in
a
series
of
US
Government
Accountability
Office
(GAO)
reports
on
the
state
of
cybersecurity
across
the
federal
government
makes
specific
recommendations
about
the
collection,
use,
and
sharing
of
personally
identifiable
information
(PII).

In
a
Feb.
14
report,
the
GAO
recommended
improving
the
protection
of
private
data,
particularly
information
collected
in
retirement
plans.

Besides
the
cybersecurity
of
stored
data,
the
report
calls
on
agencies
to
establish
data
privacy
policies
and
procedures
that
include
record-keeping
that
identifies
the
types
of
personal
data
collected,
regular
privacy
impact
reviews,
and
the
coordination
of
these
data
privacy
functions
across
the
agency.

The
latest

GAO
cybersecurity
assessment
points
out,
as
it
has
in
previous
reports,
that
agencies
have
been
slow
to
adopt
its
recommendations.

We
have
made
236
recommendations
in
public
reports
since
2010
with
respect
to
protecting
cyber
critical
infrastructure,”
the
GAO
added
in
its

report.
“Until
these
are
fully
implemented,
federal
agencies
will
be
more
limited
in
their
ability
to
protect
private
and
sensitive
data
entrusted
to
them.”

Keep
up
with
the
latest
cybersecurity
threats,
newly-discovered
vulnerabilities,
data
breach
information,
and
emerging
trends.
Delivered
daily
or
weekly
right
to
your
email
inbox.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

More Stories

Managed Security Services Provider (MSSP) Market News: 23 January 2024

Managed Security Services Provider (MSSP) Market News: 23 January 2024

4 months ago AndyC
Widespread phishing campaign deployed by reemerging TA866

Widespread phishing campaign deployed by reemerging TA866

4 months ago AndyC
Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware

Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware

4 months ago AndyC
Sniffing Out SharpHound on its Hunt for Domain Admin

Sniffing Out SharpHound on its Hunt for Domain Admin

10 months ago AndyC
Unravelling the Attack Surface of AI Systems

Unravelling the Attack Surface of AI Systems

11 months ago AndyC
Unravelling the Attack Surface of AI Systems

Unravelling the Attack Surface of AI Systems

11 months ago AndyC

You may have missed

Meta to shut Workplace app

Meta to shut Workplace app

1 hour ago AndyC
APRA, ASIC to upgrade cyber security and data capability

APRA, ASIC to upgrade cyber security and data capability

1 hour ago AndyC
Exclusive: How Entrust is protecting digital identities

Exclusive: How Entrust is protecting digital identities

1 hour ago AndyC
Certis Australia appoints Darryl Prince as senior VP

Certis Australia appoints Darryl Prince as senior VP

1 hour ago AndyC
NASA appoints first chief AI officer as the technology’s importance rises

NASA appoints first chief AI officer as the technology’s importance rises

2 hours ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.