HPE is first to reach operational readiness review for DHS CDM task order

HPEHewlett Packard Enterprise is the first integrator to reach the Operational Readiness Review gate for the full Phase 1 Continuous Diagnostics and Mitigation (CDM) solution in the federal government, the company announced July 19.  The CDM solution automatically identifies cybersecurity risks on an ongoing basis, and prioritizes these risks to enable cybersecurity personnel to mitigate the most significant threats first. The Department of Homeland Security’s Network Security Deployment Division oversees the multi-phased CDM program, which is being deployed across the federal civilian government.

On September 1, 2015, DHS contracted HPE’s services to design, build and operate a CDM solution for six federal agencies: Department of Education, Environmental Protection Agency, Department of Housing and Urban Development, National Science Foundation, Nuclear Regulatory Commission, and Small Business Administration.  The solution consists of commercial-off-the-shelf tools and sensors integrated with each agency’s CDM Dashboard to enable continuous monitoring of endpoints in the agencies.  The CDM Program supports CIO, CISO and cybersecurity personnel and provides the following benefits:

  • Continuously monitor and report system security status to agency information security personnel via the agency CDM Dashboard
  • Provide specific details to help prioritize remediation efforts
  • Allow system owners, risk managers, authoring officials, and other stakeholders to make better risk management decisions
  • Report the security posture of agency information technology (IT) assets to the future federal CDM Dashboard, ultimately reducing the requirement for manual inputs

“CDM is an important evolution in the government’s foundational approach to cybersecurity,” says Marilyn Crouther, Senior Vice President of Hewlett Packard Enterprise US Public Sector.  “HPE is proud to be a trusted partner with DHS and other federal agencies to continuously improve the protection of their digital environments.”

The successful implementation highlights HPE’s 3-year investment in CDM in the form of engineering, technical/process integration, vendor partnerships, and thought leadership.  HPE’s innovative enterprise service bus (ESB) supports the secure extraction, transformation and loading of data from CDM tools and sensors to the CDM Dashboard.  The ESB allows clients to upgrade tools and sensors without requiring reintegration with the CDM Dashboard.

Source: Hewlett Packard Enterprise