Dan Chenok and John Lainhart, both executives at IBM Corp., believe applications for monitoring network threats and vulnerabilities are central to the Department of Homeland Security’s Continuous Diagnostics and Mitigation program, they wrote in an FCW article published Tuesday.
Chenok, executive director of IBM’s center for the business of government, and Lainhart, IBM lead for public sector cybersecurity and privacy services, wrote that network administrators have access to systems and tools to view the status of government networks and identify risks through the CDM program.
DHS formed the CDM program with the goal of helping stakeholders protect their networks and mitigate threats using a risk-based cybersecurity approach, according to the IBM executives.
Chenok and Lainhart write that agencies are able to use a risk-based security approach while complying with the National Institute of Standards and Technology’s implementation guidance under the CDM program.
The executives cited a joint Government Accountability Office and inspectors general offices report that indicates security remains a challenge for agencies.
“That reinforces the strong support across the federal government for CDM and its call for more automated and proactive approaches to controlling and protecting federal data and systems, which departments, agencies and component levels all need to accelerate their move to enterprise security intelligence,” they write.