Emery Csulak, chief information security officer of the Department of Energy, has said that the department has begun deploying a new cybersecurity risk management framework at several national laboratories, Fedscoop reported Wednesday.Â
Csulak added thatÂ DOE has been using the Factor Analysis of Information Risk framework to assess the benefits and risks of migrating systems and applications to the cloud. The department also plans to implement FAIRÂ for business case management as part of fiscal 2021 budgeting procedures, he noted.
âThey need to be able to make honest risk decisions at the level where they affect their operational capabilities â whether or not itâs with science or nuclear protection,â according to Csulak.
DOE intends to include more agencies in efforts to implement the FAIR framework by fall, he said.