OMB wants report on agencies' security practices

The Office of Management and Budget last week asked agencies to review their security practices and policies and report back to OMB within 90 days.

OMB's director, Jacob Lew, issued a memo in response to the number of federal World Wide Web sites that have been affected recently by hacker attacks, reminding agencies that they are required by OMB Circular A-130 to "continually assess the risk to their computer systems and maintain adequate security commensurate with that risk."

The memo focuses on ensuring that processes are in place to use patches available from vendors for the security holes in software that many of the hackers exploit to deface Web sites. "Installing such patches is a proven way of avoiding disruptions to systems," the memo states.

Lew also recommended agencies use the security resources available within government, including the National Institute of Standards and Technology's Computer Security Resources Clearinghouse and the General Services Administration's Federal Incident Response Capability.

Featured

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

  • Comment
    Pilot Class. The author and Barbie Flowers are first row third and second from right, respectively.

    How VA is disrupting tech delivery

    A former Digital Service specialist at the Department of Veterans Affairs explains efforts to transition government from a legacy "project" approach to a more user-centered "product" method.

  • Cloud
    cloud migration

    DHS cloud push comes with complications

    A pressing data center closure schedule and an ensuing scramble to move applications means that some Homeland Security components might need more than one hop to get to the cloud.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.