John Streufert heads the Federal Network Resilience Division at DHS, which takes on CDM projects. / File
The Department of Homeland Security’s Continuous Diagnostics and Mitigation program needs to move faster, according to a Meritalk study released June 2.
Titled “CDM: Under the Hood,” the survey of 152 federal cybersecurity professionals found that most believe CDM implementation across government is not moving fast enough, although the vast majority of agencies met recent CDM deadlines. DHS’s Federal Network Resilience Division plays the lead role in the CDM effort.
The survey found that 58 percent of the respondents think the program’s phases are rolling out too slowly, while 90 percent think the 72-hour assessment cycle spelled out in current CDM goals is too long. A 24-hour cycle would be more suitable, the survey found.
CDM will be a key topic at Federal Times’ upcoming breakfast event, “The Next Chapter in Federal Cybersecurity,” which is free to attend. Click here for more information and registration.
“Based on the report findings, the CDM initiative has grown by leaps and bounds in less than one year,” said Steve O’Keeffe, founder of MeriTalk. “So what does this mean for the road ahead? Agencies need greater analytical capabilities, critical application resilience, common trusted identities, and secured shared service environment. Agencies are craving more and want faster delivery of the projects and services available through the program. As we looked under the hood, we have seen that the engine is roaring to life on this important cyber initiative.”