Two employees sitting at computer monitors.

Cybersecurity Division

Mission

CISA’s cybersecurity mission is to defend and secure cyberspace by leading national efforts to drive and enable effective national cyber defense, resilience of national critical functions, and a robust technology ecosystem.

Overview

CSD is responsible for executing this mission in three ways:

  • We fortify the nation’s cyber defenses against immediate threats and vulnerabilities.
  • We build the nation’s long-term capacity to withstand and operate through cyber incidents.
  • We will achieve a defensible cyberspace ecosystem by ensuring that changes in the ecosystem shift the advantage to network defenders.

CISA's Cybersecurity Division is led by the Executive Assistant Director for Cybersecurity, Eric Goldstein.

Subdivisions

Capacity Building

Further advance provision of centralized cybersecurity capabilities where appropriate and expand availability of risk-reducing shared services to non-federal partners.

Mission Engineering

Develop and deploy a Joint Collaborative Environment in which data from disparate sources can be rapidly analyzed and used to drive expedited action.

Joint Cyber Defense Collaborative

Advance joint cyber defense capabilities, particularly through development of joint campaign plans and enhancement of public-private operational partnerships.

Threat Hunting

Provide technical capabilities and expertise to understand and remediate adversary activity via detections, partnerships, and forensics and by conducting incident response and threat hunting missions.

Vulnerability Management

Reduce the prevalence and impact of vulnerabilities and exploitable conditions across enterprises and technologies, including through assessments and coordinated disclosure of vulnerabilities reported by trusted partners.

Office of the Technical Director

Advance, coordinate, and align technical capability efforts across CSD with the goal of enabling and advancing mission effectiveness.​

Capability Development

Acquires, engineers, and provides life cycle support for the capabilities needed to fulfill CISA's Cybersecurity Division mission.