Continuous Diagnostics and Mitigation Program Asset Management - What is on the Network?   [open pdf - 261KB]

From the Document: "The Cybersecurity and Infrastructure Security Agency's Continuous Diagnostics and Mitigation (CDM) Program is a dynamic approach to fortifying the cybersecurity of government networks and systems. The CDM Program provides cybersecurity tools, integration services, and dashboards to participating agencies to help them improve their respective security postures. The CDM Program ultimately reduces the threat surface and improves federal cybersecurity response through four capability areas: Asset Management, Identity and Access Management, Network Security Management, and Data Protection Management. The Asset Management capability is aimed at providing agencies with a centralized overview of their network devices and the risks associated with such devices. Asset Management enables an agency to maintain and improve its cyber hygiene through five capabilities: hardware asset management (HWAM), software asset management (SWAM), configuration settings management (CSM), vulnerability management (VUL), and enterprise mobility management (EMM). Asset Management is the foundation of a strong cybersecurity strategy--it allows agencies to supervise network assets as they are being configured and deployed on the network, which ensures the assets are properly configured and that vulnerabilities have been identified and remediated. CDM's automated asset management tools have been deployed to federal civilian agencies since 2014. These tools continue to be important today as shadow Information Technology (IT) (i.e., hardware/software that is on the network but is managed outside of, and without the knowledge of, the primary IT department) at agencies continue to expand."

Public Domain
Retrieved From:
U.S Department of Homeland Security Cybersecurity and Infrastructure Security Agency: https://www.cisa.gov/
Media Type:
Help with citations