OMB issues maturity model requirements for agencies to increase logging, retention of system events

The Office of Management and Budget has issued a memorandum to guide agencies on how to conduct event logging on their systems based on “criticality,” under a new maturity model focused on addressing high value assets.

The maturity model fulfills a requirement in Section 8 of President Biden’s May cyber executive order that tasked DHS, in consultation with the Attorney General, to “provide to the Director of OMB recommendations on requirements for logging events and retaining other relevant data...