Continuous Diagnostics and Mitigation Program Network Security Management - What is Happening on the Network? How is the Network Protected?   [open pdf - 182KB]

From the Document: "The Cybersecurity and Infrastructure Security Agency's Continuous Diagnostics and Mitigation (CDM) Program is a dynamic approach to fortifying the cybersecurity of government networks and systems. The CDM Program provides cybersecurity tools, integration services, and dashboards to participating agencies to help them improve their respective security postures. The CDM Program ultimately reduces the threat surface and improves federal cybersecurity response through four capability areas: Asset Management, Identity and Access Management, Network Security Management (NSM), and Data Protection Management. The NSM capability is designed to provide agencies with greater visibility into what is happening on their networks, which also gives them a better understanding of how the networks are being protected. This capability makes use of defense-in-depth boundary protection mechanisms and incident detection and response procedures to protect agencies against hacking, misuse, and unauthorized changes of network devices. NSM capabilities protect the external and internal boundaries of agency systems by providing visibility into network behavior, firewall traffic, encrypted and decrypted data, virtual private network connection, and ports and protocols. NSM consists of four overarching component capabilities, including: boundary protection (BOUND); manage events (MNGEVT); operate, monitor, and improve (OMI); and design and build in security (DBS)."

Public Domain
Retrieved From:
U.S Department of Homeland Security Cybersecurity and Infrastructure Security Agency: https://www.cisa.gov/
Media Type:
Help with citations