guidance

CISA Issues Emergency Directive Requiring Federal Agencies to Check Pulse Connect Secure Products

The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive (ED) 21-03 today requiring federal civilian departments and agencies running Pulse Connect Secure products to assess and mitigate any anomalous activity or active exploitation detected on their networks. All affected agencies are required to use the Pulse Connect Secure Integrity Tool to check the integrity of their file systems, and if mismatches or new files are found, they must take mitigation actions and contact CISA for potential incident response activities.
Last Published Date: April 20, 2021

Guidance on Consent Banners

CISA has identified nine factors that entities should consider as they develop banners that provide notice to employees of network monitoring and seek their consent. There is one set of guidance for state, local, tribal and territorial governments, and another set of guidance for private sector entities.

Time Guidance for Network Operators CIOs CISOs

This document provides practical guidance and recommendations for network operators, Chief Information Officers (CIOs), and Chief Information Security Officers (CISOs) on time resilience and security practices in enterprise networks and systems. The guidance attempts to address gaps in available time testing practices, increasing awareness of time-related system issues and the linkage between time and cybersecurity.

Download and share this guidance to help spread awareness about the importance of time resilience.

Telework

As the nation’s risk advisor, CISA brings our partners in industry and the federal government together to improve American cyber and infrastructure security. Click on the icons below to find resources designed to help organizations and teleworkers remain secure while working remotely.