The memo lists information that agencies are required to provide to DHS by Friday, November 14 to coincide with agency FISMA reporting requirements and in support of DHS’s network scanning responsibilities.
Agencies must provide DHS with an authorization for scanning of Internet accessible addresses and systems, as well as provide DHS, on a semiannual basis, with a complete list of all internet accessible addresses and systems, including static IP addresses for external websites, servers and other access points and domain name service names for dynamically provisioned systems, according to the memo.
It said agencies must give DHS at least five days advanced notice of changes to IP ranges as well.
Further, agencies must enter into legal agreements for the deployment of DHS’s EINSTEIN monitoring system, provide DHS with names of vendors who manage, host, or provide security for Internet accessible systems, including external websites and servers, and ensure that those vendors have provided any necessary authorizations for DHS scanning of agency systems
Agencies also must work collaboratively with OMB and DHS to mitigate risks and vulnerabilities in Internet accessible addresses and systems identified by OMB or DHS, and promptly report cybersecurity incidents involving department or agency information systems to DHS US-CERT in accordance with current incident notification guidelines.
Memo: http://www.whitehouse.gov/sites/default/files/omb/memoranda/2015/m-15-01.pdf
