Each agency will be required to notify their human resources directors of their “critical needs” in a range of cybersecurity workforce areas, such as security and IT, according to a memorandum reviewed by The Hill.
The guidance asks agencies to evaluate their needs on two levels: what the agency deems the most pressing skills needed in regards to staffing and competency, and what the agency deems “critical to meeting the agency’s most significant organizational missions, priorities [and] challenges,” the memo states.
Agencies are also asked to identify the root causes — talent pipeline, recruitment and retention, training, performance management, resources or budget — of their cybersecurity shortfalls. Then, they must submit an action plan describing how to address and mitigate those causes.
More articles on cybersecurity:
CNBC: What we suspect about Amazon’s move into healthcare
UnitedHealth CEO: Tech will drive value-based care in 10 years
Boeing hit with WannaCry, but says damage is limited: 5 things to know
