I work for a federal agency, and we are being directed to utilize tools off of the new Homeland Security Continuous Diagnostics & Mitigation (CDM) product catalog, and while I see SolarWinds NCM and Server & Application performance monitor on the list of approved software, I do not see LEM on the list. I'm hoping someone from SW can chime in and tell me why that might be, and assure me that they are working to get LEM on this list. Other less robust and/or useful (IMHO) made the list, so why not LEM?
Here is a brief overview of what the DHS CDM requirements entail:
The purpose of the Continuous Diagnostics and Mitigation (CDM), Tools/Continuous Monitoring as a Service (CMaaS) Product Catalog is to provide CDM Program stakeholders and CMaaS customers with a comprehensive list of CDM security products on the General Services Administration (GSA) Federal Systems Integration and Management Center (FEDSIM) CDM CMaaS Blanket Purchase Agreement (BPA). This guide serves as a mechanism to identify products that could be procured to meet specific capabilities.
The Tools/CMaaS BPA Product Catalog lists the tools and sensors cross-referenced to a list of key attributes for CDM Phases 1 and 2 security products. The information and data used to create the Tools/CMaaS Product Catalog includes the CMaaS BPA Awardee information, cross linked to product descriptions publicly available on the manufacturer's websites.
Over the course of the CDM program, technology-based solutions will adapt with the evolving cyber-threat landscape and industry is expected to improve and develop new and increasingly robust solutions. As new CDM Program capabilities and Phases are executed, new products will be added to the BPA and this Tools/CMaaS Product Catalog will be updated accordingly.
The Tools/CMaaS Product Catalog is not intended as an authoritative document for aligning a specific product with a specific capability requirement. It can, however, be used to support alignment and acquisition of specific products, support solution development based on capability requirements, and support Agency-specific technology roadmap development and refinement. All product categorizations, descriptions and weblinks have been received from the manufacturers and are for reference only, subject to change at any time, and have not been modified or endorsed by GSA or DHS.