CDM

CISA guidance focuses on post-quantum cryptography tools

The guidance nudges federal network operators to adopt automated cryptography discovery and inventory tools as a step in managing post-quantum cryptography updates.

  • By Alexandra Kelley

Amid shutdown anxiety, federal agencies are running up against an IT security deadline

While budget negotiations play out on Capitol Hill, federal agency CIOs are also on the clock to ensure the bulk of their information technology is reported through the CDM program.

  • By Carten Cordell

CDM policies provide a vital shield against climate-driven cyberattacks, experts say

Cybercriminals are increasingly leveraging extreme weather events to launch attacks on critical infrastructure sectors.

  • By Chris Riotta

The future of CDM is in data governance, proactive threat detection

COMMENTARY: The Continuous Diagnostics and Mitigation program has helped to greatly fill in cyber gaps for agencies, but there is always more work to be done.

  • By Joanna Dempsey and Bill Wright

'Evolving' CISA program helped agencies quickly respond to recent cyber incidents

CISA’s Continuous Diagnostics and Mitigation program uses close collaboration with federal agencies to identify and respond to cyber threats, including last month’s MOVEit breach.

  • By Edward Graham

CDM team helped define cyber directives

Governmentwide cyber hygiene orders are increasingly taking into account the capabilities of Continuous Diagnostics and Mitigation tools.

  • By Adam Mazmanian
Insights & Reports
Stay Ahead of the Latest Threats with Intelligence-driven Security Operations
Presented By Google Cloud
Download Now
Strengthening cloud security for federal agencies
Presented By Wiz
Download Now

CISA orders agencies to conduct weekly scans of networks and digital assets

The Cybersecurity and Infrastructure Security Agency is taking a major step towards increasing its visibility into the risks facing federal networks.

  • By Chris Riotta

Agencies are sharing cyber data with CISA, officials say

The Cybersecurity and Infrastructure Security Agency is rapidly expanding its visibility into federal networks under the Biden administration's cybersecurity executive order.

  • By Chris Riotta

White House embeds cyber EO in FISMA reporting

Federal agencies will be reporting on zero-trust adoption and automation efforts in their annual cybersecurity reports to the Office of Management and Budget.

  • By Adam Mazmanian

White House looks to step up endpoint monitoring

The Biden administration is requiring agencies to provide visibility into their endpoint detection and response efforts as part of the cybersecurity executive order.

  • By Adam Mazmanian

DHS faces setbacks implementing CDM, watchdog says

The Department of Homeland Security has failed to address critical vulnerabilities across information technology assets due to significant delays in the department's rollout of a federal Continuous Diagnostics and Mitigation program.

  • By Chris Riotta

Senators press for federal agency accountability over SolarWinds

Three top cybersecurity officials struggled to answer questions from lawmakers about who is to blame for the government's failure to stop the breach of nine federal agencies.

  • By Justin Katz

SolarWinds hack blights the Trump administration's cybersecurity record

The consequences of the SolarWinds Orion hack are far from clear, but analysts and lawmakers say that officials at CISA and NSA made notable strides to improve the government's cybersecurity posture.

  • By Justin Katz
Featured eBooks
Health Tech
Read Now

Next-Generation Computing

Read Now

Space Tech

Read Now

Evanina: Number of known SolarWinds victims 'will continue to grow'

A top counterintelligence official today said the number of known federal agencies affected by the SolarWinds hack will likely to continue to rise beyond initial estimates.

  • By Justin Katz

Upgraded CDM dashboard to roll out through FY2021

DHS officials say four federal agencies are now using an upgraded Continuous Diagnostics and Mitigation dashboard and they plan to continue implementing the platform elsewhere throughout the fiscal year.

  • By Justin Katz

CISA orders agencies to patch dire Window flaw

The Cybersecurity and Infrastructure Security Agency alerted federal agencies of an authentication flaw in Microsoft server software in need of an immediate fix.

  • By Mark Rockwell

NASA doesn't know what's on its network

According to an oversight report, the space agency can't provide an accurate count of the number of contractor-owned devices connected to its networks.

  • By Adam Mazmanian

CISA updates internet connection policies

Many of the changes to the core Trusted Internet Connection policies were in response to public feedback seeking new tech and additional architectural and security concepts.

  • By Derek B. Johnson

Best practices for agency implementation of CDM

A seasoned practitioner has some advice on how agencies can optimize their implementations of CDM tools, policies and processes.

  • By Benjamin Liberty

CISA touts CDM, CyberStat as key cyber compliance tools

A watchdog report found DHS doesn't always validate whether agencies are complying with mandatory directives. The department floated plans to leverage two existing program to do just that.

  • By Derek B. Johnson

Privacy assessment finds risk with CDM shared service platform

An updated assessment from the Department of Homeland Security finds that a shared services platform designed to help smaller agencies use the Continuous Diagnostics and Mitigation program brings with it new but manageable privacy risks.

  • By Derek B. Johnson