“The Office of Management and Budget issued a memo on Friday that sets a 90-day deadline for CISA, the main cyber wing of the Department of Homeland Security, to access agencies’ current endpoint detection and response deployments. It then spells out timelines for other steps to improve their endpoint defenses.
OMB says the goal is to establish ‘improved agency capabilities for early detection, response, and remediation of cybersecurity incidents on their networks, using advanced technologies and leading practices.’…”
“OMB’s memo directs agencies to take other actions within 90 days. CISA must develop a method for continuously evaluating the effectiveness of agencies’ endpoint detection capabilities. CISA will work with the Chief Information Officer Council to recommend endpoint detection improvements and agencies.
Within 120 days, agencies must conduct an analysis with CISA of endpoint detection and response gaps, coordinate with CISA on future plans, make sure they have the right spending and staffing levels and ensure their endpoint plans are compatible with privacy. Within 180 days, CISA and the CIO Council have to publish a playbook of best approaches…” Read the full article here.
Source: OMB orders federal agencies to let CISA access defenses of devices, servers – By Tim Starks, October 11, 2021. CyberScoop.