Cybersecurity cyber

Discussions this morning with a Federal agency IT professional and an IT acquisition professional revealed very different views of the Federal government’s security posture.

Shared on the condition of no attribution during an AFCEA (Armed Forces Communications and Electronics Association) Bethesda event Tuesday morning, the speakers’ varying opinions showed how the balance between security and effectiveness is an issue still up for debate. […]

Department of Homeland Security DHS

The Consolidated Appropriations Act–the bill agreed to by House and Senate negotiators that could avert another partial government shutdown–features more cybersecurity-related funding for the Department of Homeland Security (DHS) and its Cybersecurity and Infrastructure Security Agency (CISA), but also further obligations to report to Congress in the coming months on key security-related issues. […]

Cyber Security Brainstorm

A former Assistant Secretary for Infrastructure Protection at the Department of Homeland Security (DHS) said Thursday she believes that while the agency’s core cybersecurity operations are holding up through the partial Federal government shutdown, other important IT security initiatives appear to be lying fallow until the agency receives funding to operate and pay its employees. […]

Cybersecurity cyber

MeriTalk recently connected with Ted Girard, Vice President Public Sector, Okta, on how agencies can get the most out of the Continuous Diagnostics and Mitigation (CDM) program to navigate on-premise, cloud, and mobile security. MeriTalk:  How does CDM align with the transition from legacy systems to the cloud? Ted Girard:  While the initial CDM phases […]

Cybersecurity flag

Federal agency demand for CDM (Continuous Diagnostics and Mitigation) security technologies has plenty of room for continued growth based on a GAO report released in late December, which showed mixed progress on agency deployment figures for the first half of 2018. The report underlined the importance of CDM progress and chided Federal agencies for being slow to implement the government’s approach to network security. […]

Phone mobile security protection

The explosive use of mobile technologies by citizens and an increasingly mobile Federal workforce is driving the need for greater visibility and security in mobile environments. As a result, the government is looking to continuous diagnostic and mitigation solutions working in conjunction with mobile device management (MDM) solutions to give agencies better awareness into mobile application and devices. […]

CDC
Cybersecurity flag

DEFEND–the new acquisition approach for the Continuous Diagnostics and Mitigation (CDM) program– will allow agencies to quickly bring in cybersecurity products and provide support throughout the lifecycle, said Jim Piche, homeland sector director for the Federal Systems Integration and Management Center (FEDSIM) within the General Services Administration (GSA). […]

Kevin Cox CDM Program Manager Continuous Diagnostics and Mitigation Program DEFEND

The Continuous Diagnostics and Mitigation (CDM) program is looking to give agencies a cyber hygiene score, redesign its dashboard, and tie the program together with other cybersecurity efforts, said Kevin Cox, CDM program manager at the Department of Homeland Security (DHS). […]

The Small Business Administration (SBA) is working with the Department of Homeland Security (DHS) to run a pilot program to fulfill Continuous Diagnostics and Mitigation (CDM) requirements in the cloud with an innovative approach to meet CDM’s goals. […]

jeanette manfra dhs nppd oc&c assistant secretary

Jeanette Manfra, assistant secretary for the Office of Cybersecurity and Communications at the Department of Homeland Security, said today that the new update to Federal Information Security Modernization Act (FISMA) guidance will place even more accountability on department leaders and reflects an evolution in discussions between agencies and DHS. […]

The Office of Management and Budget (OMB) released its updated fiscal year 2019 guidance and deadlines for the Federal Information Security Modernization Act of 2014 (FISMA), containing similar deadlines and requirements to the prior year but featuring new language on using Continuous Diagnostics and Mitigation (CDM) vehicles for acquisitions of monitoring tools. […]

Sanjay Gupta, chief technology officer at the Small Business Administration (SBA), discussed last week how his agency has aggressively moved to the cloud while keeping security at the forefront with new pilots to meet Federal requirements. […]

Capital, House of Representatives, Congress, Senate

Sen. John Cornyn, R-Texas, today introduced the Advancing Cybersecurity Diagnostics and Mitigation Act in the Senate. The House version of the bill (HR 6443), sponsored by Rep. John Ratcliffe, R-Texas, passed the House earlier this month. […]

John Ratcliffe

The House of Representatives today approved by voice vote HR 6443, the Advancing Cybersecurity Diagnostics and Mitigation Act, which would codify the Department of Homeland Security’s (DHS) Continuous Diagnostics and Mitigation (CDM) Program into law. […]

Phone mobile security protection

New Continuous Diagnostics and Mitigation (CDM) DEFEND task orders will allow the Department of Homeland Security to be “more surgical” and “more precise” about how it helps agencies get cybersecurity capabilities, particularly for CDM’s newly-expanded category of mobile devices, CDM Program Manager Kevin Cox said Thursday at an event organized by ATARC. […]

Kevin Cox CDM Program Manager Continuous Diagnostics and Mitigation Program DEFEND

All 23 of the Federal civilian CFO Act agencies covered under the Department of Homeland Security’s Continuous Diagnostics and Mitigation (CDM) Program will be connected to the governmentwide cybersecurity threat dashboard by September, CDM Program Manager Kevin Cox said today. […]

US Federal CIO Suzette Kent OMB MeriTalk CCXB

Federal CIO Suzette Kent said today that the Office of Management and Budget (OMB) is working with the Department of Homeland Security (DHS) to update metrics for Federal Information Security Modernization Act (FISMA) reporting, and said that agencies are seeing progress in those metrics, which are being tracked in a newly added category in the Federal IT Acquisition Reform Act (FITARA) scorecard. […]

Mark Kneidinger DHS Homeland Security NPPD Federal Network Resilience Division Director Office of Cybersecurity & Communications CS&C

The Department of Homeland Security is working with multiple Federal agencies to develop a new “risk radar” that will help agencies’ top executives contextualize cybersecurity risk and clarify where they need to apply focus and resources, according to Mark Kneidinger, director of the Federal Network Resilience division of DHS’ Office of Cybersecurity and Communications (CS&C). […]

Booz Allen Hamilton confirmed today its selection as prime contractor under the Federal government-wide Continuous Diagnostics and Mitigation (CDM) Dynamic and Evolving Federal Enterprise Network Defense (DEFEND) program for Group D Federal agencies. […]

The Small Business Administration’s (SBA) Deputy CIO Guy Cavallo and CTO Sanjay Gupta said today at the FCW Cybersecurity Summit that their agency’s unorthodox approach to the Continuous Diagnostics and Mitigation (CDM) Program is yielding a ton of practical benefits, even though it required a bit of a departure from CDM’s initial guidelines. Now, SBA is providing a new potential model for other agencies – many struggling with the first of CDM’s four phases – to use when considering how to achieve the outcomes the program intends. […]

Federal agencies must build “identity-aware” infrastructures to effectively monitor and manage user access to information and information systems across their enterprise for more secure and efficient operations, according to cybersecurity experts. […]

Booz Allen Hamilton has won a task order worth up to $1.03 billion to provide services under the Continuous Diagnostics and Mitigation (CDM) Program to CDM’s Group D Federal agencies, according to contracting information on the General Services Administration’s (GSA) Federal Procurement Data System. […]

At a House Homeland Security Committee hearing on Wednesday, July 25, to examine findings of the Federal Cybersecurity Risk Determination Report and Action Plan released by the Office of Management and Budget (OMB) in May, lawmakers and private sector witnesses hailed new legislation as a necessary – but on its own insufficient – step to bring down the security risks of three-quarters of Federal agencies deemed in cyber danger. […]

The House Homeland Security Committee today voted to recommend two bills, the Advancing Cybersecurity Diagnostics and Mitigation Act and the Department of Homeland Security Chief Data Officer Authorization Act, aimed at strengthening and solidifying IT operations of the Department of Homeland Security (DHS) and to guard against evolving cybersecurity threats. […]

Rep. John Ratcliffe, R-Texas, introduced legislation today to codify into law the Department of Homeland Security’s Continuous Diagnostics and Mitigation (CDM) Program, in order “to advance and modernize” the program and ensure procedural policies for it. […]

Survey results discussed during a June 14 Digital Government Institute webinar seem to bode well for end-user reception of deployment of Continuous Diagnostics and Mitigation (CDM) Phase 3 technology by the Department of Homeland Security, which is charged with improving the security of Federal civilian networks. […]

DHS Continuous Diagnostics and Mitigation (CDM) is pivotal to improving government cybersecurity. While it’s critical, it has a lot of moving parts–and that can make it difficult to follow. MeriTalk sat down with Kevin Cox to get a handle on the state of CDM, as well as an understanding of where the program goes from here. And, it’s quite a story–so I hope you’re sitting comfortably, feel free to grab a cup of coffee. […]

Categories