Abstract: Mitigations are a significant factor when considering the risks applicable to a network and must be accounted for in order to provide a sense of priority to any additional mitigations that should be applied. This talk will explore means created or under development by NSA to accurately represent the state of mitigations on a network using automated risk scoring systems, with the results tied to the list of mitigations NSA believes are particularly critical. Specific topics include the Splunk Assessment of Mitigation Implementations (SAMI) capability and how mitigations can be covered in vulnerability assessment systems like DISA’s Continuous Monitoring and Risk Scoring (CMRS) effort and DHS’s Contiguous Diagnostics and Monitoring (CDM) program.
Date Published: 17 November 2016
Last Reviewed: 20 October 2016
Creator: Dedicated Support Communicators
Dissemination Control: N/A
Length: 8 page(s)