Another key requirement as part of the information security continuous monitoring program is for agencies to assess and develop staff and resources – including training – to meet program objectives.
According to the memo, by April 30, agencies must identify resources and skill requirement gaps to manage and coordinate the internal ISCM program, and also identify specific individuals to manage the agency ISCM program.
OMB said DHS would coordinate interagency advisory and user groups and provide training and mentoring to agency managers on how to implement ISCM. Further, for agencies that obtain ISCM services offered through the DHS CDM program, contract support is to be provided to help implement sensors across multiple agencies to reduce the learning curve and provide consistent implementation, the memo said.
