Many security experts believe the government still has a long way to go in its quest to establish standards and implement continuous monitoring across the board. Security Content Automation Protocol (SCAP) standards to streamline manual and automated inputs of agency data for FISMA reporting is one of the difficulties in the implementation of SCAP standards. Only 29 percent of agencies are currently compliant with continuous monitoring tools and practices in place, according to a recent report from Office of Management and Budget. The OMB’s Fiscal Year 2010 Report to Congress on the Implementation FisMA, out just last month, reported that only 29 percent.”]
Source: https://www.darkreading.com/analytics/continuous-monitoring-still-a-long-way-off-for-the-feds