FY 2012 Report to Congress on the Implementation of the Federal Information Security Management Act of 2002

Citation
Executive Office of the President, FY 2012 Report to Congress on the Implementation of the Federal Information Security Management Act of 2002 (Mar. 2013) (full-text).

Overview
More government programs violated data security law standards in 2012 than in the previous year, and at the same time, computer security costs have increased by more than $1 billion. Inadequate training was a large part of the reason all-around FISMA adherence scores slipped from 75% in 2011 to 74% in 2012. Agencies reported that about 88% of personnel with system access privileges received annual security awareness instruction, down from 99% in 2011. Meanwhile, personnel expenses accounted for the vast majority &mdash; 90% &mdash; of the $14.6 billion departments spent on information technology security in 2012.