Top cyber officials told lawmakers weighing reforms to the Federal Information Security Management Act that updates need to take into account an increased threat surface that comes with technological advances and focus on a whole-of-government approach that also draws on lessons learned in the private sector.
At a Tuesday hearing before the House Oversight and Reform Committee on FISMA reform, Chairwoman Carolyn Maloney (D-N.Y.) and Ranking Member James Comer (R-Ky.) released new discussion draft legislation, the Federal Information Security Modernization Act of 2022.
“It’s no longer enough to guard our networks at their perimeters, as was the focus in the past,” Maloney said. “Today, we must also guard within the perimeter, continuously monitoring for the smallest trace of abnormal activity that might signal an intruder. Modernization cannot wait, because our adversaries certainly won’t.”
Government Accountability Office Director of Information Technology and Cybersecurity Jennifer Franks told lawmakers that in fiscal year 2020 the 23 civilian CFO Act agencies “reported progress toward meeting federal cybersecurity targets; nevertheless, a majority of the…
