Watchdog calls on DHS to clarify when tech acquisitions require cyber risk assessments

A US Government Accountability Office report is demanding more clarity from the Department of Homeland Security over the mandatory requirement of a cybersecurity risk assessment for tech acquisitions. While finding the majority of procurement projects meet cost and schedule specifications, seven failed to provide a memo detailing cybersecurity threats, leaving doubts over when certain instruction requirements are applicable or able to be waived.