OMB’s Risk Report Calls for Cyber Threat Framework Implementation, IT Capability Standardization

The Office of Management and Budget has released a new report that details four key measures needed to address cybersecurity threats across the federal government.

OMB said in the risk report that federal agencies should increase their cyber threat awareness through the implementation of the Cyber Threat Framework as well as enhance asset management by standardizing information technology and cyber capabilities.

The two other core actions call for the consolidation of security operations centers to facilitate incident detection and response operations and efforts to promote accountability through risk assessments and governance processes, according to the Federal Cybersecurity Risk Determination Report and Plan.

OMB teamed up with the Department of Homeland Security to evaluate the risk management performance of 96 agencies across 76 metrics and found that 74 percent of them have cyber programs that are classified as “high risk” or “at risk.”

OMB and DHS also found that agencies lack the capability to assess how threat actors gain access to their data and information systems.

OMB issued the risk report in compliance with President Donald Trump’s executive order on cybersecurity.

Check Also


NSA Warns of Cyber Vulnerability in Email Transfer Software

The National Security Agency has identified a vulnerability that Russian cyber actors take advantage of to attack mail transfer networks. Sandworm Team, a Russian military group, has exploited the CVE-2019-10149 vulnerability found in the Exim software that Linux and Unix systems use as a mail transfer agent, NSA said Thursday.

Leave a Reply

Your email address will not be published. Required fields are marked *