CDA/CDA.Security

Security Theater Institute CDArmy Wiki Markets+4

Loading...

Company

About CDA
How We Work
Contact
Careers

Properties

CDA.Security
CDA.Institute
CDArmy
CDA.Theater
CDA.Wiki
CDA.Markets
CDA.Shield
CDA.Score

Legal

Privacy Policy
Terms of Service
Responsible Disclosure
Status

Connect

LinkedIn
Blog
CDA.Live
War College

CDADefense runs deep.

© 2026 CDA, LLC. All rights reserved.

VSD Domain

Vulnerability & Surface Defense

Shrink the target, harden the surface

The walls. Where attackers probe.

Start Your FRM View All Domains

CSRContinuous Surface Reduction

Vulnerability and Surface Defense represents the walls of your fortress. VSD missions systematically discover, assess, and reduce your attack surface through vulnerability management, patch operations, configuration hardening, and continuous surface monitoring.

Capabilities

What VSD covers

Attack Surface Management

Continuous discovery and monitoring of external and internal attack surface including shadow IT.

Vulnerability Management

Automated scanning, prioritized remediation, and SLA-driven patch management across all systems.

Penetration Testing

Quarterly external and internal penetration testing with web application security assessments.

Configuration Hardening

CIS benchmark implementation, drift detection, and automated configuration enforcement.

Missions

16 missions in VSD

Each mission has defined scope, deliverables, and completion criteria.

M-VSD-R01C-RECON

2 weeksStandard

Attack Surface Discovery

External and internal attack surface enumeration including shadow IT discovery.

M-VSD-R02C-RECON

2 weeksStandard

Vulnerability Assessment

Comprehensive vulnerability scanning across all network segments and applications.

M-VSD-R03C-RECON

Configuration Baseline Audit

Audit system configurations against CIS benchmarks and industry standards.

M-VSD-B01C-BUILD

Patch Management System

Deploy automated patch management with testing, staging, and rollback capabilities.

M-VSD-B02C-BUILD

2 weeksStandard

WAF Deployment

Deploy and configure web application firewall for all public-facing applications.

M-VSD-B03C-BUILD

Network Segmentation

Implement network segmentation to isolate critical systems and limit lateral movement.

M-VSD-H01C-HARDEN

3 weeksStandard

CIS Benchmark Hardening

Harden all systems to CIS Level 1 benchmarks with documented exceptions.

M-VSD-H02C-HARDEN

Port and Service Reduction

Disable unnecessary ports, services, and protocols across all systems.

M-VSD-H03C-HARDEN

2 weeksStandard

Certificate Management

Implement automated certificate lifecycle management with expiry alerting.

M-VSD-D01C-DRILL

External Penetration Test

Full-scope external penetration test simulating real-world attacker methodology.

M-VSD-D02C-DRILL

Internal Penetration Test

Internal network penetration test with assumed-breach starting position.

M-VSD-D03C-DRILL

Web Application Security Test

OWASP-aligned web application security assessment for all critical applications.

M-VSD-C01C-COMMAND

OngoingStandard

Continuous Vulnerability Scanning

Automated weekly vulnerability scans with prioritized remediation tracking.

M-VSD-C02C-COMMAND

Patch Compliance Monitoring

Continuous patch compliance monitoring with SLA-based remediation timelines.

M-VSD-C03C-COMMAND

Surface Reduction Reporting

Monthly attack surface metrics showing reduction trends and remaining exposure.

M-VSD-C04C-COMMAND

OngoingStandard

Configuration Drift Detection

Automated detection and alerting for configuration changes that violate baselines.

Assess your Vulnerability & Surface Defense posture.

The Foundational Risk Model evaluates your VSD domain and produces specific mission recommendations.

Schedule Your FRM View Pricing