Cybersecurity Division
Mission
CISA’s cybersecurity mission is to defend and secure cyberspace by leading national efforts to drive and enable effective national cyber defense, resilience of national critical functions, and a robust technology ecosystem.
Overview
CSD is responsible for executing this mission in three ways:
- We fortify the nation’s cyber defenses against immediate threats and vulnerabilities.
- We build the nation’s long-term capacity to withstand and operate through cyber incidents.
- We will achieve a defensible cyberspace ecosystem by ensuring that changes in the ecosystem shift the advantage to network defenders.
Subdivisions
Capacity Building
Further advance provision of centralized cybersecurity capabilities where appropriate and expand availability of risk-reducing shared services to non-federal partners.
Mission Engineering
Develop and deploy a Joint Collaborative Environment in which data from disparate sources can be rapidly analyzed and used to drive expedited action.
Joint Cyber Defense Collaborative
Advance joint cyber defense capabilities, particularly through development of joint campaign plans and enhancement of public-private operational partnerships.
Threat Hunting
Provide technical capabilities and expertise to understand and remediate adversary activity via detections, partnerships, and forensics and by conducting incident response and threat hunting missions.
Vulnerability Management
Reduce the prevalence and impact of vulnerabilities and exploitable conditions across enterprises and technologies, including through assessments and coordinated disclosure of vulnerabilities reported by trusted partners.
Office of the Technical Director
Advance, coordinate, and align technical capability efforts across CSD with the goal of enabling and advancing mission effectiveness.