Chief Information Officer Open Recommendations: Nuclear Regulatory Commission
Government Accountability Office07/03/2025
Highlights
What GAO Found
In June 2025, GAO identified six open recommendations under the purview of the Nuclear Regulatory Commission's Chief Information Officer (CIO), from previously issued work. Each of these recommendations relates to a GAO High-Risk area: (1) Ensuring the Cybersecurity of the Nation or (2) Improving IT Acquisitions and Management.
For example, GAO recommended that the agency fully implement all event logging requirements as directed by the Office of Management and Budget. GAO also recommended that the CIO develop guidance regarding standardizing cloud service level agreements, and that the Nuclear Regulatory Commission complete annual reviews of its IT portfolio consistent with federal requirements. The CIO's continued attention to these recommendations will help ensure the secure and effective use of IT at the agency.
Why GAO Did This Study
CIO open recommendations are outstanding GAO recommendations that warrant the attention of agency CIOs because their implementation could significantly improve government IT operations by securing IT systems, identifying cost savings, improving major government programs, eliminating mismanagement of IT programs and processes, or ensuring that IT programs comply with laws, among others.
For more information, contact Nick Marinos at marinosn@gao.gov.