Tag Archives: CDM

Jim Piche: GSA to Issue Continuous Diagnostics and Mitigation-as-a-Service Task Orders by August

The General Services Administration plans to award the next set of task orders under the Department of Homeland Security’s Continuous Diagnostics and Mitigation program in an effort to provide 41 small agencies access to cybersecurity services through cloud-based shared services, FCW reported Wednesday. Mark Rockwell writes Jim Piche, group manager of GSA’s federal …

Read More »

Luke McCormack: DHS Seeks ‘Ready Access’ to Tech Through Agile Development, Open Source Buys

The Department of Homeland Security is looking at agile development and open source software approaches for its technology acquisition and implementation initiatives, Federal News Radio reported Friday. Jason Miller writes DHS has kicked off five pilot programs for the Citizenship and Immigration Service, Federal Emergency Management Agency, Immigration and Custom Enforcement …

Read More »

Chris Cummiskey Suggests Focus Areas for DHS Cyber Efforts

Chris Cummiskey, former acting undersecretary for management at the Department of Homeland Security, has outlined action steps he believes can help the department protect government information systems amid the increasing number of data breaches. Cummiskey, currently a senior fellow with George Washington University’s Center for Cyber and Homeland Security, wrote in …

Read More »

Andy Ozment: DHS Continues Push for CDM, Einstein 3A Implementation

The Department of Homeland Security is working to complete the implementation of its Continuous Diagnostics and Mitigation program at more nondefense agencies as part of efforts to detect cyber vulnerabilities, Federal News Radio reported Thursday. Jared Serbu writes that Andy Ozment, assistant secretary for cybersecurity and communications at DHS, told the House …

Read More »

Matthew Goodrich Eyes ‘Risk-Based’ Model for FedRAMP’s CDM Portion

Matthew Goodrich, director of the Federal Risk and Authorization Management Program, has said he wants to transform FedRAMP’s approach toward continuous monitoring of computer systems to a more “more risk-based” approach in an interview with FCW published Thursday. Goodrich told FCW that the continuous monitoring functions within are FedRAMP is “solid” but remain based on compliance, Sean …

Read More »

Patrick Howard: Agencies Need Stakeholder-Oriented CDM Strategy

Patrick Howard, a former chief information security officer for two federal agencies, believes that end users or stakeholders are important factors to consider for continuous diagnostics and mitigation strategies. Howard, a former CISO at the Department of Housing and Urban Development and Nuclear Regulatory Commission, wrote in an opinion piece for Federal …

Read More »