CISA
DHS sees more cyber outsourcing
NOTE: This article first appeared on FCW.com.
CISA chief Chris Krebs said in an Aug. 22 speech that many federal agencies will be outsourcing cyber to a shared service provider in the future.
The current model of how federal civilian agencies manage cybersecurity risk will change dramatically in the next five years, with some agencies embracing shared services, said Chris Krebs, director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency.
The current model, which tasks all federal agencies with taking care of their own cybersecurity risks, is “unsustainable,” said Krebs in a presentation at Auburn University’s McCrary Institute for Cyber and Critical Infrastructure Security on Aug. 22.
“At the end of the day, [federal civilian] agencies are responsible for managing their risk. I’m putting them in a position to manage their risk” with tools such as Continuous Diagnostics and Mitigation, said Krebs.
“We’re risk advisors” to federal agencies on cybersecurity, he said. “My view is that that is not a…