Department of Homeland Security’s Continuous Diagnostics and Mitigation (CDM) Phase 2 Privilege Management Requirements

April 7, 2020

The U.S. Department of Homeland Security is continuously looking for better ways to help federal agencies manage and secure their networks. It provides guidance and resources with programs like Continuous Diagnostics and Mitigation (CDM,) a full spectrum Cyber Security initiative created to curtail the advanced persistent threat (APT) of cyber adversaries through locking down and properly managing privileged credentials across agencies.

The CDM program is composed of two phases. Phase one aims to protect endpoint integrity, including the management of hardware and software assets, configuration management and vulnerability management. Phase two – also referred to as least privilege and infrastructure integrity – is focused on the people using the computers, systems and networks and their associated security privileges. It aims to help manage access controls, security-related behavior, privileges, credentials and authentication and boundary protection.

Learn more about the role of Privileged Access Management in Federal Agencies and how it helps address the two phases of the CDM program.

Previous Flipbook
Cyber Security Situational Awareness - Spotlight On U.S. Federal Agencies
Cyber Security Situational Awareness - Spotlight On U.S. Federal Agencies

Federal agencies must meet several directives and standards, including Presidential Executive Order 13800 S...

Next Article
SOC It 2 Me:  CyberArk Achieves SOC 2 Type 2 Compliance
SOC It 2 Me: CyberArk Achieves SOC 2 Type 2 Compliance

Service Organization Control (SOC) 2 is an auditing procedure that ensures service providers are securely m...