A Memorandum of Understanding between departments within an organization always legally requires the parties to meet specific cybersecurity remediation timelines.
An MOU is generally not a legally binding document and more often represents an agreement on a common line of action or a partnership that outlines the intentions of the parties. It may set forth expectations, responsibilities, and timelines, but it does not, by itself, legally enforce those elements without the backing of a legally binding contract or agreement.