Soon we’ll know the specific federal departments and agencies making the first purchases under the Department of Homeland Security’s (DHS) Continuous Diagnostics and Mitigation (CDM) program. This is a great point to have reached after years of careful planning for this continuous monitoring initiative. DHS has moved swiftly to get this first phase underway.
We’re pretty bullish on CDM and here’s why: CDM will create efficiencies, cost-savings and ultimately a higher level of cybersecurity for civilian agencies – and any other entities that choose to use it. One of the best features of CDM is that it’s an iterative process, which makes good sense. Government agencies shouldn’t be expected to leap from A to Z immediately. With CDM, they can move progressively through thoughtfully designed steps to achieve a high level security posture. This is an important change from the past, under FISMA and the report card model.
The fact that McAfee technology is a major part of this program is a major validation of our Security Connected model, where security tools are integrated, constantly communicate with each other and share threat intelligence. And we’re not just relying on what we’ve developed already. The program has led our engineers to design tools that specifically meet or exceed CDM requirements. CDM’s purchasers will be the first beneficiaries of these tools, but others throughout government and the private sector will be able to take advantage of them also.
We’ve said that CDM represents an evolution in government security, and so far it does not disappoint. The next phases – where purchasers can avail themselves specifically of tools they don’t yet have – will demonstrate this even more conclusively.