{"id":255152,"date":"2026-05-25T14:49:00","date_gmt":"2026-05-25T18:49:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/25\/omb-revamps-cyber-event-logging-requirements\/"},"modified":"2026-05-25T15:00:08","modified_gmt":"2026-05-25T19:00:08","slug":"omb-revamps-cyber-event-logging-requirements","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/25\/omb-revamps-cyber-event-logging-requirements\/","title":{"rendered":"OMB revamps cyber event logging requirements"},"content":{"rendered":"<p><a href=\"https:\/\/federalnewsnetwork.com\/cybersecurity\/2026\/05\/omb-revamps-cyber-event-logging-requirements\/\">OMB revamps cyber event logging requirements<\/a><\/p>\n<p><a href=\"https:\/\/federalnewsnetwork.com\/cybersecurity\/2026\/05\/omb-revamps-cyber-event-logging-requirements\/\">https:\/\/federalnewsnetwork.com\/cybersecurity\/2026\/05\/omb-revamps-cyber-event-logging-requirements\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-25 14:49:00<\/a><\/p>\n<p>Source Domain: <a href=\"federalnewsnetwork.com\">federalnewsnetwork.com<\/a><\/p>\n<p>Agencies should take a more risk-based approach to logging cybersecurity data. Agency chief information security officers have to submit to the Cybersecurity and Infrastructure Security Agency and the Office of Management and Budget an updated logging plan that focuses on two specific areas: continuous event monitoring (CEM) and threat hunting, investigation, response and forensics (THIRF).<\/p>\n<p>A new memo from OMB Director Russ Vought rescinds previous logging requirements and establishes a new set of expectations that \u201cminimizes red tape\u201d and contains cost.<\/p>\n<p>\u201cIn 2021, OMB issued Memorandum M-21-31 , Improving the Federal Government \u2018s Investigative and Remediation Capabilities Related to Cybersecurity Incidents, to raise logging baselines and enhance agencies\u2019 knowledge of events occurring in their systems. Implementation of that memorandum improved foundational capabilities across agencies,\u201d Vought wrote in OMB\u2019s latest memo released Friday. \u201cHowever, some requirements, such as the retention of vast quantities of logging data without clear utility, proved neither operationally feasible nor cost-effective for most agencies. To address these inefficiencies and the evolving cyber threat environment, this memorandum directs agencies to employ a risk-based, prioritized logging approach.\u201d<\/p>\n<p>OMB added cyber event logging as a requirement for agency CISOs after the SolarWinds incident, saying at the time increased visibility before, during and after a cybersecurity incident, especially through cloud service providers environments and other third-parties is invaluable in the detection, investigation and remediation of cyber threat.<\/p>\n<p>]]<\/p>\n<p>But over time, the amount of data collected by these logging tools became expensive to maintain and required new and advanced tools with artificial intelligence and machine learning capabilities to understand and act on this data.<\/p>\n<p>The Government&#8230;<\/p>\n<p><a href=\"https:\/\/federalnewsnetwork.com\/cybersecurity\/2026\/05\/omb-revamps-cyber-event-logging-requirements\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>OMB revamps cyber event logging requirements https:\/\/federalnewsnetwork.com\/cybersecurity\/2026\/05\/omb-revamps-cyber-event-logging-requirements\/ Publish Date: 2026-05-25 14:49:00 Source Domain: federalnewsnetwork.com Agencies&#8230;<\/p>\n","protected":false},"author":1,"featured_media":255156,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/federalnewsnetwork.com\/wp-content\/uploads\/2025\/12\/Trump-CFPB_46753.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[20,57],"class_list":["post-255152","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-artificial-intelligence","tag-security"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/255152"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=255152"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/255152\/revisions"}],"predecessor-version":[{"id":255157,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/255152\/revisions\/255157"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/255156"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=255152"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=255152"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=255152"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}