From: The Hill
By Ross Nodurft, opinion contributor
When I first started at the Office of Management and Budget (OMB), my colleague and I were given the task of working with the budget examiners to develop an agency by agency view of cybersecurity spending to submit to Congress as part of the president’s budget submission. Agencies had, for the last few years, reported cybersecurity numbers that seemed to be disaggregated from the larger IT budget submission, and we were tasked with reconciling those submissions. This led to a three year project that has taken agencies from requesting cybersecurity dollars in reaction to events to a proactive, risk-based approach to budgeting for cybersecurity.