While every Federal agency is now required to identify network assets and vulnerabilities and provide data to the Cybersecurity and Infrastructure Security Agency (CISA) regularly under CISA’s Binding Operational Directive (BOD), Improving Asset Visibility and Vulnerability Detection on Federal Networks, gaps persist. Bad actors continue to exploit known vulnerabilities, some of which are the consequence of highly interconnected systems and data sharing between the public and private sectors. […]