GAO: DHS Directives Strengthened Federal Cyber, but Work Remains
Department of Homeland Security directives “strengthened federal cybersecurity, but improvements are needed,” GAO said Tuesday. One benefit was a 2015 critical vulnerability mitigation directive, which required agencies to address vulnerabilities discovered by DHS cyber scans within 30 days, GAO said.…
Sign up for a free preview to unlock the rest of this article
Export Compliance Daily combines U.S. export control news, foreign border import regulation and policy developments into a single daily information service that reliably informs its trade professional readers about important current issues affecting their operations.
This resulted in 87 percent federal compliance by 2017. GAO recommended DHS coordinate with the National Institute of Standards and Technology and the General Services Administration on the directive development process. DHS agreed (see page 73) with GAO’s recommendations, saying its efforts have primarily been led by the agency’s Cybersecurity and Infrastructure Security Agency. During GAO’s review, DHS was in the process of updating its cybersecurity directives. DHS plans to complete revision of its directive development process by Sept. 30.