Cybersecurity and Infrastructure Security Agency (CISA) has released a platform through which agencies may report cyber vulnerability information that ethical hackers would use to identify and assess system flaws, Fedscoop reported Tuesday.
CISA's new vulnerability disclosure platform supports a 2020 directive that asks agencies to report cybersecurity issues and verify applicable testing methods.
Civilian agencies may use the platform to address cyber vulnerabilities in cooperation with civilian ethical hackers. EnDyna and Bugcrowd, a pair of government contractors, will administer the platform with the help of CISA's quality service management office.
Agencies must also establish a process that accommodates anonymous vulnerability reporting, according to the directive.