as far as the recent fisma atport, we noted that i.g.'s most of the federal agencies noted weaknesses in their agencies continuous monitoring capabilities, either lacked the proper policies or procedures or did not have it implemented over a large percentage of their devices. in a sense reports, agencies reported themselves -- in those same reports, agencies reported that their ability to have a monitoring capability over a large percentage of their devices is nonexistent. for example, 14 of the 24 agencies reported that they have less than -- they had an automated monitoring capability for monitoring the security configurations for less than 60% of their devices. and that is a key development, and a key requirement to implement a continuous monitoring capability. is to be able to automatically monitor those on a frequent an ongoing basis, because of the changes in computing environments and changes and threats, as well as the increase in a connectivity of these computer networks, it's imperative that agencies monitor on a more frequent b