Without proper staffing and training, the department can't be sure federal systems are secure, according to the Office of Inspector General.

One-fourth of CFO Act agencies have not completed a key requirement of a 2015 law that was intended to bring more rigor to how the federal government categorizes and fills cybersecurity jobs, a new report from the Government Accountability Office says. Six of the 24 agencies surveyed by GAO had not “completed assigning the associated