CDM team helped define cyber directives

Governmentwide cyber hygiene orders are increasingly taking into account the capabilities of Continuous Diagnostics and Mitigation tools.

CISA orders agencies to conduct weekly scans of networks and digital assets

The Cybersecurity and Infrastructure Security Agency is taking a major step towards increasing its visibility into the risks facing federal networks.

Agencies are sharing cyber data with CISA, officials say

The Cybersecurity and Infrastructure Security Agency is rapidly expanding its visibility into federal networks under the Biden administration's cybersecurity executive order.

White House embeds cyber EO in FISMA reporting

Federal agencies will be reporting on zero-trust adoption and automation efforts in their annual cybersecurity reports to the Office of Management and Budget.

White House looks to step up endpoint monitoring

The Biden administration is requiring agencies to provide visibility into their endpoint detection and response efforts as part of the cybersecurity executive order.

DHS faces setbacks implementing CDM, watchdog says

The Department of Homeland Security has failed to address critical vulnerabilities across information technology assets due to significant delays in the department's rollout of a federal Continuous Diagnostics and Mitigation program.

Senators press for federal agency accountability over SolarWinds

Three top cybersecurity officials struggled to answer questions from lawmakers about who is to blame for the government's failure to stop the breach of nine federal agencies.

SolarWinds hack blights the Trump administration's cybersecurity record

The consequences of the SolarWinds Orion hack are far from clear, but analysts and lawmakers say that officials at CISA and NSA made notable strides to improve the government's cybersecurity posture.

Evanina: Number of known SolarWinds victims 'will continue to grow'

A top counterintelligence official today said the number of known federal agencies affected by the SolarWinds hack will likely to continue to rise beyond initial estimates.

Upgraded CDM dashboard to roll out through FY2021

DHS officials say four federal agencies are now using an upgraded Continuous Diagnostics and Mitigation dashboard and they plan to continue implementing the platform elsewhere throughout the fiscal year.

CISA orders agencies to patch dire Window flaw

The Cybersecurity and Infrastructure Security Agency alerted federal agencies of an authentication flaw in Microsoft server software in need of an immediate fix.

NASA doesn't know what's on its network

According to an oversight report, the space agency can't provide an accurate count of the number of contractor-owned devices connected to its networks.

CISA updates internet connection policies

Many of the changes to the core Trusted Internet Connection policies were in response to public feedback seeking new tech and additional architectural and security concepts.

Best practices for agency implementation of CDM

A seasoned practitioner has some advice on how agencies can optimize their implementations of CDM tools, policies and processes.

CISA touts CDM, CyberStat as key cyber compliance tools

A watchdog report found DHS doesn't always validate whether agencies are complying with mandatory directives. The department floated plans to leverage two existing program to do just that.

Privacy assessment finds risk with CDM shared service platform

An updated assessment from the Department of Homeland Security finds that a shared services platform designed to help smaller agencies use the Continuous Diagnostics and Mitigation program brings with it new but manageable privacy risks.

Senators look to codify CDM

Two senior lawmakers are teaming up on a bipartisan effort to codify the Continuous Diagnostics Mitigation program run by DHS.