Due to the importance of information assurance (IA) within the public sector, Continuous Monitoring (CM) efforts have been mandated by the Office of Management and Budget (OMB) and funded by Congress. The DHS Continuous Diagnostics and Mitigation (CDM) program enables federal agencies to procure CM products and services with access to centralized funding. State and local governments may also utilize the contract vehicle for CM purchases; however, they are not eligible for Congressional funding.
Through the DHS CDM program, agencies have quick and easy access to the highest quality IT services and solutions to help secure the nation’s critical infrastructures. Use of DHS CDM also allows agencies to reduce their procurement cycles and achieve optimum pricing through pre-competed, pre-qualified vendors.
The DHS CDM program enables agencies to move from a static mode of risk analysis and prevention to an ongoing cycle of risk identification, analysis and mitigation.
Agency Security Challenges
Government agencies are responsible for implementing and maintaining their IA programs to assess organizational compliance with laws, regulations and policies. Historically, these IA programs were based on a periodic checklist—a snapshot in time of the organization’s security posture. In today’s threat landscape, this manual approach does not meet the growing need for timely, decision-quality information.
The Kratos Team - Addressing Today's Security Issues
Through the DHS CDM program, the Kratos Team helps agencies implement a robust IA program to:
• Provide near-real time results and improve an organization’s security posture
• Lower operational risk and exploitation of federal IT systems and .gov networks
• Optimize the use of existing security technologies
• Reduce costs of re-authorizing and/or reassessing information assets
• Streamline processes for continuous monitoring and security risk assessments
• Identify useful metrics to facilitate remediation and risk reduction
• Prioritize the worst problems within minutes, versus quarterly or yearly