The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published the Binding Operational Directive 23-01 for Improving Asset Visibility and Vulnerability Detection on Federal Networks with April 3, 2023 deadlines for all FCEB agencies.

CISA’s asset visibility requirements are doing a big part in moving the industry forward and evolving the overall approach to asset inventory while also highlighting the importance of a comprehensive asset inventory in relation to national or organizational security.

During this webinar, RunZero's Federal Solution Architect discussed how to understand more about BOD 23-01 for Improving Asset Visibility and Vulnerability Detection on Federal Networks and attendees learned:

• How BOD 23-01 states, “Asset visibility is the building block for operational visibility” 
• How agencies can improve vulnerability enumeration across all device types (IT, IoT, OT), including managed and unmanaged devices within their entire IPv4 or IPv6 networks
• The gaps of where traditional solutions like vulnerability scanners and EDRs are unable to provide a comprehensive asset inventory
• Requirements on developing and maintaining an operational capability to initiate on-demand asset discovery and vulnerability enumeration with associated timelines for responses