Chenok, executive director of IBMâs center for the business of government, and Lainhart, IBM lead for public sector cybersecurity and privacy services, wrote that network administrators have access to systems and tools to view the status of government networks and identify risks through the CDM program.
DHS formed the CDM program with the goal of helping stakeholders protect their networks and mitigate threats using a risk-based cybersecurity approach, according to the IBM executives.
Chenok and Lainhart write that agencies are able to use a risk-based security approach while complying with the National Institute of Standards and Technologyâs implementation guidance under the CDM program.
The executives cited a joint Government Accountability Office and inspectors general offices report that indicates security remains a challenge for agencies.
âThat reinforces the strong support across the federal government for CDM and its call for more automated and proactive approaches to controlling and protecting federal data and systems, which departments, agencies and component levels all need to accelerate their move to enterprise security intelligence,â they write.