The House Homeland Security Committee has approved a measure to require DHS to develop a new cybersecurity strategy.
The bill, HR-3510, sponsored by Rep. Cedric Richmond, D-La., comes on the heels of a DHS inspector general report that found the department’s recently formed Office of Policy has yet to develop a cyber strategic implementation plan and that components’ cyber responsibilities and capabilities with DHS’ overall mission are not aligned.
The report also determined that DHS needs to establish a cyber training program to provide its analysts and investigators with the skills needed to effectively perform their duties at ICE, NPPD, and USSS.
It also called for an automated cyber information-sharing tool to enhance coordination among components, and found deficiencies with ICE and USSS’ implementation of DHS baseline configuration settings, vulnerability management, weakness remediation, and specialized security training that may result in loss, misuse, modification, and unauthorized access to the department’s information systems and data.
