BDNA Solutions for
the Federal Government

Actionable Intelligence for Proactive Cybersecurity and Better IT Management

View Datasheet

Transforming Cybersecurity Postures From Reactive to Proactive

Federal agencies need two things to manage their cybersecurity risks proactively on their terms: visibility into their IT infrastructures and cyber vulnerabilities, and actionable intelligence to prioritize and manage those vulnerabilities from a risk-management perspective.

BDNA gives federal organizations a comprehensive, normalized view of all assets within their IT infrastructures, as well as critical contextual data for those assets. This data includes past and future End-of-Life and End-of-Support (EOL/EOS) dates, version information, Common Vulnerabilities and Exposures (CVE) information, Common Vulnerability Scoring System (CVSS) information, and agency-specific approved/non-approved information.

BDNA’s unique capability — demonstrated by almost 60 federal sole-source awards – enables agencies to proactively assess their IT vulnerabilities and prioritize mitigation efforts.

BDNA Value Propositions for Government Organizations

Top areas of business and security value from BDNA include:

  • End-of-Life (EOL) and End-of-Support (EOS) dates for virtually all IT products
  • Visibility into all vulnerabilities in deployed hardware, software and operating systems
  • Standardizing of software titles and hardware nomenclature (normalization)
  • Robust market intelligence of hardware and software
  • Improved management of software entitlements
  • Enhanced governance of software whitelists and blacklists

Delivering Better Results for IT Modernization Initiatives

Federal agencies are mobilizing on many fronts to improve IT operations and lower costs. Whether they are rationalizing IT infrastructures and applications, incorporating cloud services, enhancing cyber risk management, or consolidating acquisitions and licensing, federal agencies must start from a position of knowledge.

BDNA Solutions for Government provide agencies with IT visibility and actionable intelligence to smartly implement:

  • Data Center Optimization Initiative (DCOI)
  • Federal Information Technology Acquisition Reform Act (FITARA)
  • Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure
  • Cloud First
  • IT Acquisition
  • Continuous Diagnostics and Mitigation (CDM)
  • PortfolioStat
  • Operating system upgrades (e.g. Windows 10)
  • NDAA Section 937 for software license optimization
  • Application rationalization
  • Enterprise Architecture (EA)
  • O&M cost avoidance
  • Making Electronic Government Accountable By Yielding Tangible Efficiencies Act of 2016 (MEGABYTE Act)
  • Software Asset Management (SAM)
  • IT Asset Management (ITAM)

BDNA’s ability to aggregate, normalize, deduplicate and vastly enrich IT data and then feed that data to numerous other cybersecurity, ITSM, enterprise architecture and CMDB platforms delivers unrivaled visibility into the IT enterprise.

BDNA works with the following platforms:

  • Apptio
  • BMC
  • CEB
  • HPE
  • LeanIX
  • MEGA
  • Microsoft
  • Oracle
  • RSA Archer
  • ServiceNow
  • Splunk
  • Troux by Planview

Improving All Aspects of IT Decision-Making

BDNA solutions provide accurate, comprehensive and real-time enterprise asset data and market intelligence to power more effective decision-making across all dimensions of government IT.

BDNA visibility and intelligence helps agencies:

  • Know where and when to focus EOL/EOS mitigation efforts.
  • Consolidate contracts and make smarter IT purchasing and strategic sourcing decisions.
  • Better understand their existing IT environments and transition to their desired end-state environments.
  • Update to new operating systems, such as Windows 10.
  • Make more efficient use of Enterprise License Agreements (ELAs) and streamline vendor audits.
  • Enhance Risk Management Framework (RMF) efforts.
  • Find and remove unapproved hardware and software and ensure compliance with agency architecture and standards.
  • Improve ITAM throughout the asset lifecycle.
  • Improve ITSM and reduce mean time to resolution (MTTR).

Civilian Agencies

Civilian agencies use BDNA solutions to improve security and deliver greater efficiencies in IT asset management.

Common civilian agency use cases for BDNA include supporting:

  • EOL/EOS asset management and risk mitigation
  • Continuous Diagnostics and Mitigation (CDM) initiatives
  • Cost avoidance through technology refresh
  • Cybersecurity risk mitigation
  • Reducing irrelevant data for downstream applications
  • Windows 10 deployments
  • Data Center Optimization Initiative (DCOI)
  • Approved/non-approved list compliance
  • IT acquisition and Strategic Sourcing initiatives
  • Improved accuracy of IT asset inventories

Read more about how BDNA supports civilian agency requirements here.

DoD/Intelligence Agencies

U.S. Department of Defense (DoD) and Intelligence agencies use BDNA solutions to improve IT management and security in support of national security missions.

Common DoD and Intelligence agency use cases for BDNA include supporting:

  • EOL/EOS asset management and risk mitigation
  • DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT)
  • DoDI 5000.76 Accountability of Internal Use Software (IUS)
  • Cybersecurity risk mitigation
  • Windows 10 deployments
  • Application rationalization initiatives
  • Enterprise application migration initiatives
  • Cost avoidance through technology refresh
  • Approved/non-approved list compliance
  • Enterprise License Agreements (ELAs) management
  • Reducing irrelevant data for downstream applications
  • Improved accuracy of IT asset inventories

BDNA is approved for operating in DoD STIG environments on both classified and unclassified DoD networks. Read more about how BDNA supports DoD/Intelligence agency requirements here.

Application Rationalization

BDNA develops a federated software portfolio from all the environment’s disparate data sources, then augments it with rich market information, including software end-of-life, support dates, hardware power ratings, licensing data and more to create a rich, comprehensive deployment portfolio. It also normalizes purchase orders to create an entitlement profile in the same consistent format. Organizations clearly see what they have, what they need and what they can decommission.

Continuous Monitoring and Governance/CDM

Effective monitoring improves risk management, compliance, and sustainability. BDNA delivers the clean, accurate, comprehensive data that makes monitoring effective.

BDNA also enhances existing Continuous Diagnostics and Mitigation (CDM) investments by normalizing data that CDM tools generate and enriches them to include important market intelligence, such as EOL/EOS data, which no other solution can do.


BDNA leverages an organization’s existing discovery and security tools to report exposure to published vulnerabilities for the entire IT enterprise within minutes. This includes intelligence on exactly when assets have or will become End-Of-Life/End-of-Support (EOL/EOS). This unique capability stems from BDNA Technopedia®, the world’s most trusted and comprehensive catalog of IT market data, which contains more than 199 million market data points on more than 2 million IT products.

Technopedia market intelligence includes Common Platform Enumeration (CPE) information, Common Vulnerabilities and Exposures (CVE) information, Common Vulnerability Scoring System (CVSS) values, and version information — actionable intelligence that can be mashed up with agency-specific approved/non-approved lists so that federal organizations can quickly and proactively identify and mitigate millions of vulnerabilities before they become active threats. BDNA also is a robust tool for managing “shadow IT.”

BDNA feeds data to downstream applications and systems, such as an agency’s Security Information and Event Management (SIEM), IT Service Management (ITSM), and cybersecurity scanning tools. BDNA interfaces with all major vendors, including Microsoft SCCM, BMC, Tanium, ForeScout, ServiceNow, Symantec, McAfee, RSA Archer, Tenable Nessus, Splunk and more.

Data Center Optimization and Consolidation

Migrating enterprise applications to core data centers or consolidating infrastructure requires actionable intelligence that explains exactly what assets you have, their versions and security attributes, and heir compatibilities and incompatibilities.

BDNA enables rapid visibility into an organization’s entire hardware and software infrastructure, regardless of platform. It captures inventory information accurately and normalizes it to a standard format for easy analysis of meaningful data, including power ratings, form factor, computing power, temperature ratings and more.

This enables agencies to better plan their deployments and consolidations for dramatically reduced energy and real estate footprints.

Enterprise Architecture

BDNA provides enterprise architects with the data needed to optimize their agencies’ connected enterprise portfolios: goals and strategy, business architecture, applications, technology, information and investments.

BDNA data delivers the visibility and transparency needed to understand and optimize the connections between all these portfolios so enterprise architects can understand the present and architect the future.

Federal IT Acquisition Reform Act (FITARA)

Implementing FITARA to achieve better IT management results requires department CIOs and their staffs to have unprecedented visibility into their IT domains.

BDNA’s comprehensive, accurate IT asset data within the enterprise enables CIOs to make quick, smart decisions to prioritize modernization funds, eliminate duplicative IT resources, consolidate software purchases, reduce lifecycle costs and leverage Category Management and Federal Strategic Sourcing initiatives for commodity IT.

IT Asset Management (ITAM)

To achieve effective contractual, financial and inventory management at the heart of good asset management, government organizations need clean, consistent and accurate data. But most ITAM tools can’t provide that across all three functions. BDNA makes all IT asset and procurement data consistent, enriches it with meaningful product attributes and other market intelligence, and creates a consolidated view for better management and decision-making throughout the asset lifecycle.

BDNA rapidly builds a clean, complete inventory of all IT assets across the enterprise network, including PCs, mobile devices, routers, switches, servers, operating systems, software and network attached storage. This capability enables agencies to surmount the challenges of poor IT data quality, lack of standardization, incomplete data and keeping up with a constantly evolving inventory that is monitored by multiple tools.

IT Service Management (ITSM)

When supporting thousands or tens of thousands of devices and applications, federal IT staffs must have quality data about those devices and applications to ensure IT operations and applications run smoothly and reliably to support the mission.

BDNA aggregates data from multiple sources and normalizes it to a standard format to keep it consistent, accurate and complete, even during mergers, acquisitions and new product releases. It then adds market information such as end-of-life dates and hardware specifications to reduce mean time to resolution (MTTR) times, increase first call resolution (FCR), and boost ROI on ITSM implementations.

License Compliance and Optimization

IT vendors and products change so frequently that underlying hardware configurations, licensing compliance and even the dollar value of contracts can quickly become outdated. BDNA normalizes federal purchase orders to create accurate entitlement profiles that include the most up-to-date information on vendor activity, product lifecycle changes, licensing metrics and more, ensuring that your organization maintains licensing compliance.

BDNA also solves the challenge of managing multiple licensing models and confusing terminologies, which occur when vendors, resellers and distributors use different licensing models and terms. Getting a clear picture of an agency’s software license portfolio across the enterprise means an easier time of finding and removing duplicative, unnecessary and outdated licenses.

Free One-day Proof of Concept Pilot

BDNA offers a one-day no-cost proof of concept for up to 1,000 endpoints to demonstrate how quickly it can be implemented to immediately improve IT visibility. A stand-alone virtual appliance in your environment can be downloaded with the BDNA Normalize® and Technopedia already preconfigured. Data normalization and enrichment typically takes less than one hour and detailed reports can be generated using the drag-and-drop analytic engine that same day from SCCM, Tanium, BigFix or numerous other infrastructure tools. Typical results highlight that more than 40 percent of organization’s software and more than 20 percent of their hardware are already End-of-Life.

Government Partners

BDNA works with an array of large, mid-size, small and Minority/Disadvantaged business systems integrators and resellers that implement and embed our technology into numerous government solutions.

BDNA offers its government partners marketing support and robust technical support, along with free product training and the ability to conduct quick, complimentary proof of concepts with a set standard number of assets.

BDNA products are widely available on a number of federal government contract vehicles:

Government Partners

Government Customers
Special Ops
Defense Logistics Agency
Defense Information Systems Agency

Interested in Partnering with BDNA?

Contact Us