Federal agencies made progress, but need to fully implement incident response requirements

Federal agencies have improved cybersecurity incident response by utilizing tools, services, and resources. These include endpoint detection and response solutions, services from organizations like CISA and third parties for threat intelligence, and sufficient staff and funding. Further implementation of response requirements is needed.