diff --git a/_news/news/federal-agencies-made-progress-but-need-to-fully-implement-incident-response-requirements.md b/_news/news/federal-agencies-made-progress-but-need-to-fully-implement-incident-response-requirements.md
new file mode 100644
index 00000000..974d09a1
--- /dev/null
+++ b/_news/news/federal-agencies-made-progress-but-need-to-fully-implement-incident-response-requirements.md
@@ -0,0 +1,25 @@
+---
+layout: news
+publisher: Government Accountability Office
+title: Federal Agencies Made Progress, but Need to Fully Implement Incident
+  Response Requirements
+url-link: https://www.gao.gov/products/gao-24-105658
+publication-date: December 04, 2023
+description: The U.S. Government Accountability Office (GAO) report highlights
+  that federal agencies have made progress in cybersecurity, particularly in
+  incident response, but still need to fully implement specific requirements.
+  Despite advancements in handling cyber incidents, gaps remain in event
+  logging, a key aspect for managing cybersecurity incidents effectively. The
+  GAO stresses the importance of complete adherence to these requirements to
+  enhance the detection, investigation, and remediation of cyber threats.
+synopsis: >-
+  * Federal agencies have improved in cybersecurity incident response.
+
+  * Complete implementation of incident response requirements is still lacking.
+
+  * Event logging, crucial for incident management, is inadequately addressed.
+
+  * The GAO underscores the need for strict adherence to federal cybersecurity standards.
+
+  * Effective detection and handling of cyber incidents hinge on fulfilling these requirements.
+---