Information Sharing: A Vital Resource
An overview of the Executive Order encouraging the development of ISAOs; CISA resources available to help these groups share information effectively.
CISA works with partners to defend against today’s threats and collaborate to build more secure and resilient infrastructure for the future. The threats we face—digital and physical, man-made, technological, and natural—have become more complex, and the threat actors more diverse. As we lead the nation’s efforts to understand and manage risk to our critical infrastructure, partnerships that span the public and private sectors are crucial to our success.
The programs and services we provide are driven by our comprehensive understanding of the risk environment and the corresponding needs identified by our stakeholders. We help organizations manage risk and increase resilience using all available resources, including those provided by the federal government and commercial vendors.
Featured Content
Disclosing CVI within a Facility and Among Private Sector Entities
Learn more about disclosing Chemical-terrorism Vulnerability Information (CVI) within a facility and among private sector entities.
Featured Articles
DHS Announces New Cybersecurity Performance Goals for Critical Infrastructure
CISA developed cross-sector recommendations to help organizations prioritize cybersecurity investments.
CISA Publishes Technical Rule to Update Protected Critical Infrastructure Information (PCII) Program
CISA is issuing a technical rule to improve and modernize aspects of the Protected Critical Infrastructure Information (PCII) Program to help critical infrastructure owner/operators, state and local governments, and other important stakeholders more effectively use it.
CISA Expands the Joint Cyber Defense Collaborative to include Industrial Control Systems Industry Expertise
The JCDC has expanded to include Industrial Control Systems (ICS) experts to further increase U.S. government focus on the cybersecurity and resilience of industrial control systems and operational technology.
Alerts & Directives
Emergency Directive 22-03
CISA has identified vulnerabilities in VMWare products that pose an unacceptable risk to FCEB agencies and require emergency action.
Binding Operational Directive 22-01
This directive establishes a CISA-managed catalog of known exploited vulnerabilities that carry significant risk to the federal enterprise and establishes requirements for agencies to remediate any such vulnerabilities included in the catalog.
Contact Your Regional Office
Services
CISA has compiled a list of free tools and services to help the private sector further advance their security capabilities. This living repository includes services provided by CISA, widely used open-source tools, and other free tools and services offered by private and public sector organizations.
Automated Indicator Sharing (AIS) Service
Automated Indicator Sharing (AIS) is a service that enables participants in the service to exchange cyber threat indicators with State, Local, Territorial, and Tribal governments and the private sector at machine speed.
ChemLock On-Site Assessments and Assistance
Under the ChemLock program, CISA can provide virtual or on-site assistance and assessments that help facilities with dangerous chemicals identify the specific risks for their facility and offer tailored suggestions for security measures that will enhance their security posture.
Crossfeed
CISA conducts limited, passive scanning to alert Federal agencies, SLTT entities, and critical infrastructure operators across the nation of any serious vulnerabilities.
Publications
CISA Cybersecurity Awareness Program Young Professional Resources
As information you share on the Internet becomes increasingly accessible to others, what steps are you taking to manage your online brand? Find resources and materials to help protect your online identity.
CISA Cybersecurity Awareness Program Small Business Resources
Small businesses have valuable information cyber criminals seek but often have fewer resources dedicated to cybersecurity.
NIAC Public-Private Sector Intelligence Coordination: Final Report and Recommendations
This is the National Infrastructure Advisory Council's Public-Private Sector Intelligence Coordination: Final Report and Recommendations.