Cybersecurity

CSA

Read more about CSA

Critical infrastructure is increasingly interdependent and connected. A threat to one part of this infrastructure can impact other sectors quickly. Programs and services CISA provides are driven by our comprehensive understanding of the risk environment and the corresponding needs identified by our stakeholders. CISA’s Cybersecurity Advisors (CSAs) are at the center of this collective security effort.

CISA Statement on Reported HHS Cyber Activity

Release Date: March 16, 2020

Read more about CISA Statement on Reported HHS Cyber Activity

CISA will continue to support our partners at HHS as they protect their IT systems. CISA has taken a number of steps over the last several weeks to increase cybersecurity preparedness across federal civilian agencies, including enhanced monitoring, issuing recommendations as agencies shift to telework, and identifying and protecting particularly important systems supporting COVID response efforts.

Last Published Date: March 16, 2020

CISA at SXSW 2020

Read more about CISA at SXSW 2020

The Cybersecurity and Infrastructure Agency (CISA) leads the effort to enhance the security, resiliency, and reliability of the Nation's cybersecurity and communications infrastructure.

Cyber Defense Incident Responder

Read more about Cyber Defense Incident Responder

This role investigates, analyzes, and responds to cyber incidents within the network environment or enclave.

Personnel performing this role may unofficially or alternatively be called:

CISA at RSA Conference 2020

Read more about CISA at RSA Conference 2020

The Cybersecurity and Infrastructure Agency (CISA) leads the effort to enhance the security, resiliency, and reliability of the Nation's cybersecurity and communications infrastructure. We’ll be presenting and engaging with partners at the RSA Conference and Expo—the largest cybersecurity forum in the United States—set for February 25-28 in San Francisco, CA.

Information Technology Sector

Read more about Information Technology Sector

This document highlights areas of elevated risk resulting from the software-enabled and connected aspects of IoT technologies and their role in the physical world. It provides information on certain vulnerabilities and weaknesses, suggests solutions for common challenges, and identifies factors to consider before purchasing or using Internet of Things devices, systems, and services.

#Protect2020 Strategic Plan

Read more about #Protect2020 Strategic Plan

Election security is a top priority for the U.S. Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA). As the lead federal agency responsible for securing the Nation’s elections infrastructure, CISA works closely with the intelligence community, law enforcement officials, private sector partners, and others across the Federal Government to ensure we are doing everything possible to defend our electoral systems. But this needs to be a whole of nation effort. State and local election officials are on the front lines, and the role of the Federal Government is to make sure that they are prepared.

Elections Cyber Tabletop in a Box

Read more about Elections Cyber Tabletop in a Box

CISA developed the Elections Cyber Tabletop Exercise Package (commonly referred to as “tabletop in a box”) as a resource for state, local, and private sector partners. The package includes template exercise objectives, scenario, and discussion questions, as well as a collection of cybersecurity references and resources.

Access FedVTE Cybersecurity Training Today

Read more about Access FedVTE Cybersecurity Training Today

The Federal Virtual Training Environment (FedVTE) is a free, online and on-demand cybersecurity training system. With courses ranging from beginner to advanced levels, you can strengthen or build your cybersecurity skillsets – at your own pace and schedule!

Windows Vulnerabilities that Require Immediate Attention

January 14, 2020
3:30 pm

Read more about Windows Vulnerabilities that Require Immediate Attention

While agencies are responsible for managing risk to their networks, CISA is responsible for safeguarding and securing the Federal enterprise. We do not issue emergency directives unless we have carefully and collaboratively assessed it to be necessary – indeed, this is only the second time CISA has ever issued an emergency directive.