
The Department of Homeland Security has a defense-in-depth approach to cybersecurity across the enterprise that includes a number of tools and technologies to detect and prevent threats, share information and maintain situational awareness but has shortcomings when it comes to training its employees on best practices and keeping up with current guidance, the department’s inspector general (IG) says in a report issued last week. Despite DHS requirements for annual cybersecurity awareness training, a sampling to evaluate compliance showed that in…