CDA/CDA.Security

Security Theater Institute CDArmy Wiki Markets+4

Loading...

Company

About CDA
How We Work
Contact
Careers

Properties

CDA.Security
CDA.Institute
CDArmy
CDA.Theater
CDA.Wiki
CDA.Markets
CDA.Shield
CDA.Score

Legal

Privacy Policy
Terms of Service
Responsible Disclosure
Status

Connect

LinkedIn
Blog
CDA.Live
War College

CDADefense runs deep.

© 2026 CDA, LLC. All rights reserved.

SPH Domain

Security Posture & Hygiene

Automated security hygiene

The garrison. Daily operations.

Start Your FRM View All Domains

APCAutonomous Posture Command

Security Posture and Hygiene is the garrison: the daily operations that keep your defenses functional. SPH missions cover endpoint protection, email security, security awareness, log management, and the continuous measurement of security hygiene metrics.

Capabilities

What SPH covers

Endpoint Protection

EDR deployment, endpoint hardening, and continuous endpoint health monitoring.

Email Security

Advanced email gateway, phishing protection, DMARC enforcement, and secure communication channels.

Security Awareness

Role-based training programs, phishing simulations, and security culture development.

Posture Monitoring

Continuous security posture scoring with automated hygiene checks and trend reporting.

Missions

18 missions in SPH

Each mission has defined scope, deliverables, and completion criteria.

M-SPH-R01C-RECON

2 weeksStandard

Security Posture Baseline

Establish baseline security posture score across all six PDM domains.

M-SPH-R02C-RECON

Endpoint Inventory

Complete inventory of all endpoints including BYOD and IoT devices.

M-SPH-R03C-RECON

Email Security Assessment

Evaluate email security controls including SPF, DKIM, DMARC, and gateway configuration.

M-SPH-R04C-RECON

Security Awareness Baseline

Measure current security awareness levels through simulated phishing and assessments.

M-SPH-B01C-BUILD

2 weeksStandard

EDR Deployment

Deploy endpoint detection and response across all managed endpoints.

M-SPH-B02C-BUILD

2 weeksStandard

Email Gateway Hardening

Implement advanced email security with sandboxing, URL rewriting, and attachment scanning.

M-SPH-B03C-BUILD

3 weeksStandard

Security Awareness Program

Design and launch role-based security awareness training program with quarterly modules.

M-SPH-B04C-BUILD

SIEM Integration

Deploy or configure SIEM with log sources, correlation rules, and alerting.

M-SPH-H01C-HARDEN

2 weeksStandard

Endpoint Hardening

Apply endpoint hardening policies including application whitelisting and USB controls.

M-SPH-H02C-HARDEN

DNS Security

Implement DNS-layer security filtering to block malicious domains and C2 channels.

M-SPH-H03C-HARDEN

Browser Security

Deploy browser security policies including extension management and safe browsing enforcement.

M-SPH-D01C-DRILL

Phishing Simulation

Execute targeted phishing simulation campaign with metrics and remedial training.

M-SPH-D02C-DRILL

Endpoint Incident Drill

Simulate endpoint compromise and measure detection, isolation, and response times.

M-SPH-D03C-DRILL

Tabletop Exercise

Scenario-based tabletop exercise testing incident response procedures and decision-making.

M-SPH-C01C-COMMAND

OngoingStandard

Posture Monitoring

Continuous security posture monitoring with automated scoring and trend analysis.

M-SPH-C02C-COMMAND

Awareness Reinforcement

Monthly security awareness content delivery with quarterly phishing simulations.

M-SPH-C03C-COMMAND

Hygiene Reporting

Weekly security hygiene metrics including patch status, EDR health, and email filter effectiveness.

M-SPH-C04C-COMMAND

OngoingStandard

Log Review

Regular log analysis and SIEM rule tuning based on emerging threat patterns.

Assess your Security Posture & Hygiene posture.

The Foundational Risk Model evaluates your SPH domain and produces specific mission recommendations.

Schedule Your FRM View Pricing

Security Posture & Hygiene (SPH) | CDA.Security | CDA.Security