Continuous Diagnostics and Mitigation Program Data Protection Management - How is Data Protected?   [open pdf - 188KB]

From the Document: "The Cybersecurity and Infrastructure Security Agency's Continuous Diagnostics and Mitigation (CDM) Program is a dynamic approach to fortifying the cybersecurity of government networks and systems. The CDM Program provides cybersecurity tools, integration services, and dashboards to participating agencies to help them improve their respective security postures. The CDM Program ultimately reduces the threat surface and improves federal cybersecurity response through four capability areas: Asset Management, Identity and Access Management, Network Security Management, and Data Protection Management (DPM). The DPM capability is intended to provide additional protections to the most critical mission data and systems on federal civilian networks. While the other CDM capabilities provide broader protections across federal networks, the DPM capability is focused on protecting sensitive (especially private) data within the agency. Protecting sensitive data requires security and privacy protections at rest, in use, and in transit to ensure the integrity, availability, and confidentiality of data and data assets. The CDM Program employs the DPM capability to help agencies and industry partners strengthen data protections to include identifying sensitive data, classifying data assets based on severity and impact, supporting timely response procedures to notify stakeholders of data breaches or spillage, and more. DPM helps agencies protect sensitive data through five capabilities: data discovery/classification (DATA_DISCOV), data protection (DATA_PROT), data loss prevention (DATA_DLP), data breach/spillage mitigation (DATA_SPIL), and information rights management (DATA _IRM)."

Public Domain
Retrieved From:
U.S Department of Homeland Security Cybersecurity and Infrastructure Security Agency: https://www.cisa.gov/
Media Type:
Help with citations