GAO: Agencies need better metrics to assess industry cyber efforts

A new Government Accountability Office report found increased attention to cyber risks across the departments and agencies that deal directly with the nation's critical infrastructure, but cautioned that only three departments have developed metrics to assess industry's performance in response to the threats.

“The Departments of Defense, Energy, and Health and Human Services established performance metrics for their three sectors,” according to GAO. “However, the SSAs [sector-specific agencies] for the other 12 sectors had not developed metrics to measure and...