First came the IT dashboard. Now a cybersecurity dashboard is on its way.
“Just as the IT dashboard took us from a static, paper based environment to a dynamic digital environment, the new cybersecurity dashboard will provide the government with a real-time view of threats facing us and our vulnerabilities,” said Kundra recently before the Senate Homeland Security and Governmental Affairs Committee’s Subcommittee on Federal Financial Management, Government Information, Federal Services, and International Security.
The impetus, he added, is clear: “Historically, the federal government has not been as effective as necessary in its cyber defense … an inadequate cybersecurity workforce, a focus on compliance rather than outcomes, and a cumbersome and time-consuming process for collecting information hindered our cybersecurity management capabilities.”
The Cyberscope system, a new tool released by The Office of Management and Budget that allows federal agencies to report FISMA compliance through an authenticated web-based reporting, is a step in that direction. “We're moving from a manual, reporting-based, compliance-focused approach to a real-time measurement of actual cybersecurity,“ said Kundra, of the “Cyberscope“ system that debuted in October. “You cannot address real-time threats with a solution that's focused on reporting requirements on a quarterly basis.”