Do What Actually Makes Us Safer: Recent OMB Guidance Highlights Shift in Focus from Compliance to Risk Managment
With its recent memorandum titled "Fiscal Year 2024 Guidance on Federal Information Security and Privacy" (M-24-04), the Office of Managment and Budget is now requiring agency Chief Information Officers (CIOs) to compile and provide an enterprise-wide inventory of their IoT / Operational Technology (OT) assets.
Some of the specific details about the covered IoT/OT assets are to include:
· Asset Identification and detailed description/specifications
· Device function, location, and criticality
· Vendor/manufacturer information and software / firmware versions
· Network connectivity, integrations, and security controls
Automated tools available from Fend's partners reduce the effort needed for this initiative substantially, and when paired with Fend's one-way data diodes, asset owners can get the information they need while maintaining the security of an air gap. Ask our team how we can help you get an x-ray view into your networks without introducing a single crack into your defenses.
Read the full OMB memo here.
|