DHS’s National Protection and Programs Directorate has taken actions to improve the information security posture at federal agencies but can take action to address additional cybersecurity responsibilities, the DHS inspector general has said.
It said NPPD federal network resilience division takes an active approach towards managing the annual FISMA reporting process.
However, the division must develop a strategic implementation plan that defines long-term goals on improving agency information security programs, and increased communication and coordination with agencies can improve the FISMA reporting process, the IG said.
It said NPPD also must address the deficiencies in maintaining and tracking the training records of contractor personnel as well as implement required DHS baseline configuration settings on its application, CyberScope.