CISA Administrative Subpoena

The Cybersecurity and Infrastructure Security Agency (CISA) works around the clock to identify and mitigate cybersecurity vulnerabilities in the digital systems that underpin much of our nation’s critical infrastructure. A key element of these efforts includes notifying critical infrastructure entities of vulnerabilities in their systems. However, at times CISA analysts identify or receive information about vulnerable systems, but cannot determine contact information for the owners or operators of the systems.

Under subsection (p) of Section 2209 of the Homeland Security Act, as amended (6 U.S.C. § 659(p)), CISA has the authority to issue administrative subpoenas for the production of information necessary to identify and notify an entity at risk. This authority applies when CISA identifies a system connected to the internet with a specific security vulnerability and has reason to believe the security vulnerability relates to critical infrastructure and affects a covered device or system, but is unable to identify the entity at risk.

CISA will issue administrative subpoenas from CISA.ADMIN.SUBPOENA@CISA.DHS.GOV.  If you received an administrative subpoena from CISA, you can reach out to us using the contact information below.

If you would like to validate that an administrative subpoena you received is from an authorized representative of CISA, please visit our Subpoena Signature Resources page.

Please check back soon as we will be adding more information in the coming months. 


CY21 Admin Subpoena Documents


Was this webpage helpful?  Yes  |  Somewhat  |  No