Publisher's Synopsis
Key Findings: The OPM data breach was preventable.OPM leadership failed to heed repeated recommendations from its Inspector General, failed to sufficiently respond to growing threats of sophisticated cyber attacks, and failed to prioritize resources for cybersecurity.Data breaches in 2014 were likely connected and possibly coordinated to the 2015 data breach.OPM misled the public on the extent of the damage of the breach and made false statements to CongressKey Recommendations: Reprioritize federal information security efforts toward zero trust.Ensure agency CIOs are empowered, accountable, and competent.Reduce use of social security numbers by federal agencies.Modernize existing legacy federal information technology assets.Improve federal recruitment, training, and retention of federal cybersecurity specialis
