Independent Evaluation of DNFSB’s Implementation of the Federal Information Security Modernization Act of 2014 For Fiscal Year 2019
Report Information
Recommendations
Identify and fully define requirements for the incident response technologies DNFSB plans to utilize in the specified areas and how these technologies respond to detected threats (e.g. cross-site scripting, phishing attempts, etc.).
Based on the results of DNFSB’s supply chain risk assessment included in the recommendation for the Identify function above, update DNFSB’s contingency planning policies and procedures to address ICT supply chain risk.