Overview[]
The Department of Homeland Security (DHS) has established a Continuous Diagnostic and Mitigation Program (CDM). Under this program, DHS coordinated with the General Services Administration (GSA) to establish a government-wide Blanket Purchase Agreement (BPA) under Multiple Award Schedule 70, which Federal, State, local and tribal governments can leverage to deploy a basic set of capabilities to support continuous monitoring of security controls in Federal information systems and environments of operation.
The BPA, awarded on August 12, 2013, provides a consistent, government-wide set of information security continuous monitoring (ISCM) tools to enhance the Federal government's ability to identify and respond, in real-time or near real-time, to the risk of emerging cyber threats. It also capitalizes on strategic sourcing to minimize the costs associated with implementing requirements of the risk management framework.
Source[]
- OMB Memorandum M-14-03, at 2.