Continuous Diagnostics and Mitigation (CDM)
‘Immense’ synergies to be gained between TIC 3.0 and CDM
TIC 3.0 and CDM — both developed by DHS’s CISA — are meant to work hand-in-hand in giving agencies visibility into their IT networks and securing them.
NOC and SOC together: DHS moves to new model for operations, incident response
No more taking systems offline while security analysts work, said the new department CIO.
CDM holds untapped value for agency cyberdefense programs
Agency leaders can turn CDM reporting requirements into a boon for their security teams, ultimately lowering costs on duplicative security and monitoring tools.
CDM system integrators filling asset-management gaps since pandemic hit
Inaccurate hardware counts were an issue at agencies even before increased telework added more devices to their networks.
No agency has implemented every key CDM requirement, seven years later
Agencies have generally deployed tools for relaying cybersecurity data, according to the Government Accountability Office.
NIST releases finalized zero-trust architecture guidance
The document adds a section on the tenets of the security philosophy and adopts longstanding federal language around approaches.