OMB’s FY 2011 Report to Congress on FISMA implementation discusses plans for expanding the use of continuous monitoring. As the report explains:
Continuous monitoring will be expanded to include threat monitoring and awareness of operational effectiveness. Departments and agencies will implement continuous monitoring to areas that have a significant threat presence and have been identified as the most critical for the protection of information resources. Insider Threat metrics will be added throughout the corresponding capabilities. Research indicates that the implementation of information security best practice and continuous monitoring can reduce insider threat incidents through a layered defense to include policy and procedures, as well as, information technology.
The complete OMB FISMA report is attached below.
Leave a Reply