Cybersecurity is the responsibility of all financial professionals. Since 1997, GAO has designated the protection of federal information systems as a government-wide high risk area. Our nation's critical infrastructures, including those related to financial management, are dependent on IT systems and electronic data to carry out operation and to process, maintain, and report essential information. However, risks to IT systems supporting the federal government and the nation's critical infrastructure are increasing: We are combating insider threats, escalating and emerging threats from around the globe, and the emergence of new and more destructive attacks. This session will highlight GAO’s recently updated cybersecurity high risk area and discuss the 10 urgent actions GAO recently called for the federal government to take to address the challenges.