Now in its fourth year and through the first two phases, DHS’s CDM program offers agencies real-time intelligence to mitigate risks and power decision-making in the event of a cyber attack. While these diagnostic capabilities serve to strengthen agencies’ cyber strategies and accelerate response times, questions regarding the program remain as we proceed towards its final steps. Are its phases defined to address newer attack vectors and emerging threats? Can agencies properly coordinate with industry to purchase security tools and technologies under CDM’s current terms? How might the Presidential Executive Order on Cybersecurity impact the CDM program?