CISA publishes update to continuous diagnostics and mitigation model incorporating additional FISMA metrics

The Cybersecurity and Infrastructure Security Agency has released an update to its data model overview for the continuous diagnostics and mitigation program, aligned with fiscal 2023 reporting metrics for the Federal Information Security Modernization Act.

“The Cybersecurity and Infrastructure Security Agency (CISA) Continuous Diagnostics and Mitigation (CDM) program operates on the premise of a common architecture that relies on capabilities provided by commercial-off-the-shelf (COTS) tools and sensors,” CISA says in version 5.0.1 of the model released on Dec. 4....