Continuous Diagnostics and Mitigation
CDM is a CISA program that gives US federal civilian agencies tools and dashboards to continuously monitor what is on their networks, who is on them, and what is happening on them. Agencies use it to maintain real-time visibility into assets, users, and vulnerabilities instead of relying on periodic manual reports. It matters because it shifted federal cybersecurity from snapshot compliance audits toward continuous, data-driven risk management.