Cybersecurity

CISA Releases Finalized IPv6 Guidance on TIC 3.0

Read more about CISA Releases Finalized IPv6 Guidance on TIC 3.0

The Cybersecurity and Infrastructure Security Agency (CISA) released the finalized “IPv6 Considerations for TIC 3.0” guidance document today, providing federal departments and agencies with security considerations related to TIC 3.0 implementation as they transition to IPv6.

Last Published Date: January 20, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published its Public Safety Communications Security white paper

Read more about The Cybersecurity and Infrastructure Security Agency (CISA) has published its Public Safety Communications Security white paper

Author: Joshua Black, Cybersecurity and Infrastructure Security Agency (CISA)

Public safety personnel rely on their ability to share information. During critical missions, some of that information, such as messages related to tactical and investigative law enforcement operations, disaster response, and medical emergencies, can be highly sensitive and confidential. If unauthorized persons intercept or otherwise compromise such information, responders’ and citizens’ safety and privacy could be at risk.

2021 Chemical Security Seminars Presentations

Read more about 2021 Chemical Security Seminars Presentations

Chemical Security Seminars 2021 graphic Select presentations from the virtual 2021 Chemical Security Seminars held in December 2021.

CISA Hosts Election Cybersecurity Navigators Forum for State and Local Election Officials

Read more about CISA Hosts Election Cybersecurity Navigators Forum for State and Local Election Officials

The Cybersecurity and Infrastructure Security Agency (CISA) recently concluded a forum for state and local election officials to discuss cyber navigator programs. Cyber navigators are state liaisons that can help under-resourced local jurisdictions manage their cyber risks, help sort through the onslaught of risk information, advice, and available services, and help fast-track mitigation efforts. During the two-day forum participants shared their experiences and identified lessons learned for navigator programs.

Last Published Date: December 21, 2021

CISA Issues Emergency Directive Requiring Federal Agencies to Mitigate Apache Log4J Vulnerabilities

Read more about CISA Issues Emergency Directive Requiring Federal Agencies to Mitigate Apache Log4J Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive (ED) 22-02 today requiring federal civilian departments and agencies to assess their internet-facing network assets for the Apache Log4j vulnerabilities and immediately patch these systems or implement other appropriate mitigation measures. This Directive will be updated to further drive additional mitigation actions.

Last Published Date: December 17, 2021

Emergency Directive 22-02

Read more about Emergency Directive 22-02

December 17, 2021

This page contains a web-friendly version of the Cybersecurity and Infrastructure Security Agency’s Emergency Directive 22-02, “Mitigate Apache Log4j Vulnerability”.

CISA SBOM-a-rama

Read more about CISA SBOM-a-rama

A ‘software bill of materials’ (SBOM) has emerged as a key building block in software security and software supply chain risk management. This work has advanced since 2018 as a collaborative community effort, driven by NTIA’s multistakeholder process.

Cybersummit 2020 Session Day 4: Closing Capstone

Read more about Cybersummit 2020 Session Day 4: Closing Capstone

Christopher Krebs serves as the first director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA). Mr. Krebs was originally sworn in on June 15, 2018 as the Under Secretary for the predecessor of CISA, the National Protection and Programs Directorate (NPPD). Mr. Krebs was nominated for that position by President Trump in February 2018. Before serving as CISA Director, Mr. Krebs was appointed in August 2017 as the Assistant Secretary for Infrastructure Protection. In the absence of a permanent NPPD Under Secretary at the time, Mr. Krebs took on the role of serving as the Senior Official Performing the Duties of the Under Secretary for NPPD until he was subsequently nominated as the Under Secretary and confirmed by the Senate the following year.

Cybersummit 2020 Session Day 4: 2020 Campaign Security

Read more about Cybersummit 2020 Session Day 4: 2020 Campaign Security

Moderator Suzanne Spaulding is senior adviser for homeland security and director of the Defending Democratic Institutions project at the Center for Strategic and International Studies (CSIS). She also serves as a member of the Cyberspace Solarium Commission. Prior to joining CSIS, Ms. Spaulding was Undersecretary at the Department of Homeland Security, leading the National Protection and Programs Directorate (NPPD), which has since been renamed to the Cybersecurity and Infrastructure Security Agency (CISA).

Cybersummit 2020 Session Day 4: Combatting Disinformation and Misinformation In Elections

Read more about Cybersummit 2020 Session Day 4: Combatting Disinformation and Misinformation In Elections

Moderator Olivia Gazis covers intelligence and national security for CBS News, where she has conducted rare, in-depth interviews with U.S. Cyber Command Commander and NSA Director Gen. Paul Nakasone and Senate Intelligence Committee Chairman Richard Burr (R-N.C.), among others. She has closely covered the investigations into Russia’s 2016 election interference led by the House and Senate Intelligence Committees, the nominations and confirmations of top intelligence community leadership, and the pressing national security issues of the moment, including cyber and election security, foreign interference campaigns, and counterintelligence threats.