Lawmakers are eyeing reforms to federal cyber standards, but the White House is already starting to ask new questions about how agencies are making progress on cybersecurity.
The changes are laid out in fiscal year 2022 metrics used by the Office of Management and Budget to evaluate agency cybersecurity performance under the Federal Information Security Modernization Act. Agency chief information officers report on the metrics to OMB and the Cybersecurity and Infrastructure Security Agency throughout the year. The data is assessed quarterly and compiled into an annual FISMA report.