New handbook offers a primer for agency CISOs

The federal government has released a guidebook that brings federal agencies’ chief information security offices up to speed on their responsibilities.

The CISO Handbook, produced by the federal councils of chief information officers and CISOs, outline the CISO’s place in an agency’s cybersecurity mission; the important policy documents on issues like risk management that they need to be aware of; the NIST cybersecurity framework; and information about broader topics, like the procurement process, that dovetail with their work.

“Breaking the complex conversation of the CISO role and risk management into consumable pieces can only help the community succeed in bringing new talent onboard and meeting our mission needs,” Centers for Medicare & Medicaid Services CISO Emery Csulak said in a statement.

The CIO Council said that the handbook’s appendices include “the most complete collection of policies and templates pertaining to Federal cybersecurity ever published in one place.”

The councils intend to update the document as the government revises its major cybersecurity policies and guidance.

John Walley

John Walley

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.