CDM Training

Welcome to the Continuous Diagnostics and Mitigation (CDM) Training Program resources page. Here you will discover numerous CDM training resources available in multiple formats and media. These options are meant to enrich your learning experience and help you gain further awareness, understanding, and overall knowledge of the CDM Program. The delivery methods we offer include:

Live CDM Dashboard Trainings

The CDM Training Team hosts in-person trainings in the Washington, DC area, and virtual demonstrations via Adobe Connect. We recommend that you attend the in-person training. It provides students with individual, hands-on Dashboard interaction and practice; it promotes engaging discussions with instructors and classmates; and it affords the opportunity to network with peers. However, if you are unable to attend in person, you can participate in an online demonstration streamed via Adobe Connect.

We offer four CDM Dashboard courses, and anticipate adding more as the CDM Program evolves and matures.

Note: course materials and listings are subject to change, according to CDM Program developments.

To learn about future courses, add your name to the Cyber Insights Distribution List by sending an email to cyberinsights@hq.dhs.gov. The CDM Training Team will send you an email invitation approximately one month before the training date with a custom registration link. The email will contain details about the training: online or in-person, and location and time.

Introduction to Creating Queries & Reports Using the CDM Agency Dashboard (CDM102)

Need to learn the basic CDM Agency Dashboard interface? Need to learn how to create custom queries? Then this course is for you.

During either the in-person or online course, you will explore the Agency Dashboard Standard Operating View (SOV) and iViews; learn how to create a custom query; and save a customized query as a report.

The goal of this foundational training is to develop awareness, knowledge, and skills in a key operational piece of the continuous monitoring solution: the CDM Agency Dashboard.

This training is offered monthly, online or in-person in the Washington, DC area.

To register for upcoming trainings, email: cyberinsights@hq.dhs.gov.

Using Measurements & Metrics of Hardware & Software Assets with the CDM Agency Dashboard (CDM103)

Are you ready to discover if your agencies hardware assets are associated with a FISMA system? Are you ready to use the CDM Agency Dashboard to easily find legacy software?  Learn how to use the CDM Agency Dashboard to create queries specific to finding measurements for hardware and software assets.

You will learn to build and run a query (search) to identify the hardware devices not associated to a FISMA container – hardware devices not associated with an authorized FISMA container is an unauthorized device on the network. You will also learn to create a query for finding legacy software on the network – legacy software can be an unauthorized software asset on the network.

This training is offered monthly, online or in-person in the Washington, DC area.

To register for upcoming trainings, email: cyberinsights@hq.dhs.gov.

Using the CDM Agency Dashboard to Drive Your Vulnerability Management Work Plan (CDM104)

Do you want to learn how to use the CDM Agency Dashboard and the Agency-Wide Adaptive Risk Enumeration (AWARE) scoring? Do you want to understand your agency’s exposure to vulnerabilities, to determine which vulnerabilities are critical and thus need prioritized mitigation actions, and how to track, manage, and report mitigation progress?

This course will provide you with an introduction to the following CDM AWARE topics:

  • Foundational knowledge needed to prepare your agency to use the CDM Dashboard AWARE risk algorithm effectively.
  • Overview of the CDM AWARE methodology.
  • How to use AWARE to prioritize mitigation activities to fix the most vulnerable assets first.

This training is offered monthly, online or in-person in the Washington, DC area.

To register for upcoming trainings, email: cyberinsights@hq.dhs.gov.

Identity and Access Management Capabilities within the CDM Agency Dashboard (CDM201)

Are you trying to figure out “Who is on your Network?” Then this training is for you.

During both the in-person and online course, you will explore the four security capabilities of TRUST, BEHAVE, CRED, and PRIV, then learn how to use the CDM Agency Dashboard to compare the “actual state” of those security capabilities to the ”desired state.” The course includes discussions of remediation plans and reporting requirements for any deficiencies found.

This training is offered monthly, online or in-person in the Washington, DC area.

To register for upcoming trainings, email: cyberinsights@hq.dhs.gov.

On-Demand CDM Dashboard Trainings

STEPfwd Virtual Training Environment

STEPfwd is an interactive learning platform that allows Government employees and contractors to follow self-paced trainings using a virtual CDM Agency Dashboard instance. This on-demand format provides 24x7 access to content videos, a sandbox with step-by-step lab activities to follow, and lab review videos that allow you to verify lab steps and check the accuracy of completed questions. If you would like to sign up for a STEPfwd account, send an email request to stepfwd-cdm@cert.org.

Federal Virtual Training Environment

The Federal Virtual Training Environment (FedVTE) CDM Training Program is a library of online video vignettes for Government employees and contractors.

CDM Program Enrichment

Innovation and Evolution of the CDM Dashboard

Demo
Transcript
 

Additional CDM program enrichment content, providing valuable context and insight, is available in brief, pre-recorded microlearns and webinars.

Microlearning Content

Microlearning content is periodic, supplemental learning material intended to enhance a particular aspect of cybersecurity knowledge in a brief amount of time. Our team produces them on several subjects, and have listed below those that focus on CDM.

Congressional Interest and Support for the Continuous Diagnostics and Mitigation (CDM) Program

This five-minute video demonstrates the interest from Congress in the CDM program from DHS. It uses testimony from Representative Gerry Connolly (VA-11), Representative John Ratcliffe (TX-4), and Mr. Kevin Cox from the CDM PMO to illustrate the value and benefit of what the CDM program is doing for Federal Agencies.
 
Please note that the video may take 10 to 15 minutes to load and play on Government Furnished Equipment (GFE).
 
Presentation Video
Presentation Transcript

Using the Continuous Diagnostics and Mitigation Dashboard to Combat WannaCry Ransomware

This 15-minute video explains how a Federal Agency can use the CDM dashboard to identify and mitigate system vulnerabilities that are exploited by the WannaCry Ransomware malware. The video demonstrates tasks that can be carried out in the CDM agency dashboard to manage risks to agency systems and information that might be otherwise taken advantage of by this negative threat.

Please note that the video may take 10 to 15 minutes to load and play on Government Furnished Equipment (GFE).

Presentation Video
Presentation Transcript

Vulnerability Management Microlearn Using Drupal

The National Protections and Programs Directorate presents a 10-minute microlearn on how the CDM program can be used to identify and remediate cybersecurity risks through vulnerability management using the example of Drupal Security Alerts.

Please note that the video may take 10 to 15 minutes to load and play on Government Furnished Equipment (GFE).

Presentation Video

Patch Management (Part 1 of 6 in the HVA microlearn series)

The FY19 Improving Agencies' Cyber Readiness microlearn series covers the top six risks identified in the “Securing High Value Assets” white paper published in July 2018. In this part, we discuss the topic of Patch Management as it relates to High Value Assets, also known as HVAs. This is one of a series of microlearns that present leading practices that DHS has identified in the operations and maintenance of HVAs. Topics covered: What is a High Value Asset? Why is this Patch Management finding important? What types of challenges do organizations face with Patch Management? What steps should your organization take to respond to this finding?

Presentation Video

Enterprise Risk Management (Part 2 of 6 in the HVA microlearn series)

The Improving Agencies' Cyber Readiness microlearn series covers the top six risks identified in the “Securing High Value Assets” white paper published in July 2018. In this part, we discuss the topic of Enterprise Risk Management as it relates to High Value Assets, also known as HVAs. This is one of a series of microlearns that present the leading practices that DHS has identified in the operations and maintenance of HVAs. Topics covered: What is ERM? What is a High Value Asset? Why does ERM matter to HVAs? What does ERM mean to HVAs? How should Federal agencies plan to address this finding?

Presentation Video

Webinars

Purpose: The Cyber Insights Webinar Series is a sequence of interactive, online discussions intended for federal civilian agencies. The series aims to increase agencies’ understanding of cybersecurity organizational best practices, risk management concepts, and mission impact relative to the CDM program.

FY20 Theme: The theme for FY19 focused on Improving Agencies' Cyber Readiness across the federal landscape. FY20 builds on this foundation, and focuses on increasing cyber-readiness across the federal enterprise through proactive planning and decision-making. Specifically, FY20 webinars will provide operational insights and practices, then link them to the CDM Program and agency implementation of CDM capabilities. In addition, the webinars will include lessons to help agencies link operational cybersecurity with mission impacts and risk mitigation.  

CDM Agency-Wide Adaptive Risk Enumeration (AWARE) Overview

In this webinar, Dave Otto (CDM Program Office, AWARE Lead) presents an overview and discussion on the Agency-Wide Adaptive Risk Enumeration (AWARE) scoring algorithm and how it can be used to inform decision-making in the management of cyber risk. The recording is divided into three parts, due to its large media file size.

Presentation Slide Deck

ISCM E-Learning Module

The Information Security Continuous Monitoring (ISCM) Technical Assistance Workshop will provide introductory information on the importance of building an ISCM strategy, how ISCM integrates with an organization’s Enterprise Risk Management (ERM) strategy, and ISCM program management and execution.

Webinar Recording
Presentation Slide Deck
Certificate of Attendance

Supporting documents:

How Identity, Credential, and Access Management (ICAM) Protects Your Agencies’ Assets

Learn about the importance of ICAM in the context of the Continuous Diagnostics & Mitigation (CDM) Program and the “life cycle” of agencies’ employees as they join, move in, then leave an organization. Mr. Ross Foard, Department of Homeland Security CDM Program Management Office (CDM PMO), and Mr. Aaron Fiebelkorn, Department of Homeland Security Federal Network Resilience (FNR) Division, present a one-hour webinar on ICAM. They discuss the credential management issues that arise during CDM Phase 2, how ICAM factors into cloud computing, and the zero-trust approach to access control.

Webinar Recording
Presentation Slide Deck
Certificate of Attendance

How Data Consistency Impacts CDM

Tuesday, April 30, 2019 12:00 pm EDT to 1:00 pm EDT

Learn more about how data consistency impacts CDM from Mr. Rick McMaster, CDM Program Management Office. This webinar includes open discussions with attendees to better understand challenges and lessons learned.

Webinar Recording
Presentation Slide Deck
Certificate of Attendance

CDM Agency Dashboard: The CONOPS and Beyond

Learn about the Concept of Operations (CONOPS) for the CDM Agency Dashboard. Mr. Willie Crenshaw, Program Executive for CDM, National Aeronautics and Space Administration (NASA), and Mr. Mark Singer, Guidance and Planning Team Lead for Cybersecurity Governance, Federal Network Resilience Division, review the highlights of the CDM Agency Dashboard CONOPS, what features are included through CDM Release 6, and how agencies can take full advantage of Release 6 features.

Webinar Recording
Presentation Slide Deck
Certificate of Attendance

A Discussion with DHS Assistant Secretary Jeanette Manfra

Learn what is important when it comes to communicating cyber risk to agency decision makers and mission owners from Ms. Jeanette Manfra, Assistant Secretary of the Office of Cybersecurity and Communications (CS&C), U.S. Department of Homeland Security (DHS).

Webinar Recording
Presentation Slide Deck
Certificate of Attendance

Learn How CDM’s AWARE Scoring Can Help You Reduce Cyber Risk

Learn how AWARE works, and how it can be used to reduce risks across the federal enterprise. Mr. Dave Otto (FNR) presents a one-hour webinar on AWARE, providing an overview of the scoring methodology behind AWARE, and what you need to do to improve your agency’s score. He also offer insights on how AWARE could evolve as agencies gain more experience with CDM to support information security continuous monitoring policies.

Webinar Recording
Presentation Slide Deck
Certificate of Attendance

Upcoming Events

There are no Upcoming events currently.

Past Events

  • Introduction to Identity and Access Management
    Thursday, December 12, 2019
    10:00 am EST to 12:00 pm EST

    This course introduces participants to the four management capabilities of the CDM Agency Dashboard: PRIV, CRED, TRUST, and BEHAVE. Discussion focuses on: (1) the foundational knowledge needed to prepare your agency to use the CDM Agency Dashboard to reduce risks associated with identity privileges and credentials; (2) an overview of how the CDM Agency Dashboard addresses user-centric data in addition to hardware and software information; and (3) strategies for integrating the PRIV/CRED/TRUST/BEHAVE capabilities of the CDM Agency Dashboard into routine processes and workflows to drive increased risk awareness and mitigation.

    Virtual/Online Demonstration

    Email CyberInsights@hq.dhs.gov to register.

  • Using Measurements for Hardware & Software Assets Using the Agency Dashboard
    Tuesday, December 10, 2019
    1:00 pm EST to 3:00 pm EST

    Are you ready to discover if your agencies hardware assets are associated with a FISMA system? Are you ready to use the CDM Agency Dashboard to easily find legacy software? Learn how to use the CDM Agency Dashboard to create queries specific to finding measurements for hardware and software assets. You will learn to build and run a query (search) to identify the hardware devices not associated to a FISMA container– hardware devices not associated with an authorized FISMA container is an unauthorized device on the network. You will also learn to create a query for finding legacy software on the network – legacy software can be an unauthorized software asset on the network.

    Recording Link: https://dhsconnect.connectsolutions.com/p2454bgbxijk/

  • Identity & Access Management Capabilities within the CDM Agency Dashboard course
    Thursday, November 7, 2019
    1:00 pm EST to 2:00 pm EST
  • Using the CDM Agency Dashboard to Drive Your Vulnerability Management Work Plan
    Tuesday, November 5, 2019
    1:00 pm EST to 2:30 pm EST

    Do you want to learn how to use the CDM Agency Dashboard and the Agency-Wide Adaptive Risk Enumeration (AWARE) scoring? Do you want to understand your agency’s exposure to vulnerabilities, to determine which vulnerabilities are critical and thus need prioritized mitigation actions, and how to track, manage, and report mitigation progress?

    This course will provide you with an introduction to the following CDM AWARE topics:

    - Foundational knowledge needed to prepare your agency to use the CDM Dashboard AWARE risk algorithm effectively.

    - Overview of the CDM AWARE methodology.

    - How to use AWARE to prioritize mitigation activities to fix the most vulnerable assets first.

    Recording link: https://dhsconnect.connectsolutions.com/plaoahl4w5ru/

  • Introduction to Creating Queries and Reports Using the Agency Dashboard
    Tuesday, October 1, 2019
    1:00 pm EDT to 3:00 pm EDT

    Need to learn the basic CDM Agency Dashboard interface? Need to learn how to create custom queries? Then this course is for you.

    During either the in-person or online course, you will explore the Agency Dashboard Standard Operating View (SOV) and iViews; learn how to create a custom query; and save a customized query as a report.

    The goal of this foundational training is to develop awareness, knowledge, and skills in a key operational piece of the continuous monitoring solution: the CDM Agency Dashboard.

    Recording link: https://dhsconnect.connectsolutions.com/pwfu6ewqbn0k/

Online Learning

The CDM Training Program has developed a library of online video vignettes, which allow the learner the ability to develop knowledge around key CDM concepts. Please visit the following websites to register for an account and access the video vignette content:
Government employees + contractors – FedVTEStepFWD
Non-government personnel – StepFWD 

Back to top