Making Mitigations Matter Measuring Host Mitigation State

Abstract: Mitigations are a significant factor when considering the risks applicable to a network and must be accounted for in order to provide a sense of priority to any additional mitigations that should be applied. This talk will explore means created or under development by NSA to accurately represent the state of mitigations on a network using automated risk scoring systems, with the results tied to the list of mitigations NSA believes are particularly critical. Specific topics include the Splunk Assessment of Mitigation Implementations (SAMI) capability and how mitigations can be covered in vulnerability assessment systems like DISA’s Continuous Monitoring and Risk Scoring (CMRS) effort and DHS’s Contiguous Diagnostics and Monitoring (CDM) program.

Date Published:

Last Reviewed: 20 October 2016

Creator: Dedicated Support Communicators

Dissemination Control: N/A

Length: 8 page(s)

Format: pdf

Type: Reference/Overview; Presentation

Tags: IAS 2016; Information Assurance Symposium - IAS; Cybersecurity; Mitigations; Information Technology - IT; Network Security; Defend