infrastructure security

Responding to Notice of a Subpoena

Read more about Responding to Notice of a Subpoena

Critical infrastructure entities may receive a communication from CISA indicating that CISA has obtained their information pursuant to a subpoena, and that a vulnerability is present on their network.

Sharing of Data Obtained by Subpoenas

Read more about Sharing of Data Obtained by Subpoenas

CISA has restrictions on sharing non-public information obtained through administrative subpoenas. CISA only shares non-public information obtained through administrative subpoenas.

Retention of Data Obtained by Subpoenas

Read more about Retention of Data Obtained by Subpoenas

The CISA Privacy Office periodically audits records of active and completed administrative subpoenas to verify that these administrative subpoenas are maintained and disposed of in accordance with the handling and disposition requirements from the law and procedure.

Subpoena Process

Read more about Subpoena Process

Subpoenas are legal orders that compel the recipient to take certain actions. Administrative subpoenas are issued by federal agencies, rather than by judges or grand juries. CISA is authorized by law to issue administrative subpoenas for the narrow purpose of identifying and notifying the owners and operators of internet-connected systems with specific security vulnerabilities.

Employee Vigilance Through the Power of Hello Translated into 12 Asian American and Pacific Islander Languages

Read more about Employee Vigilance Through the Power of Hello Translated into 12 Asian American and Pacific Islander Languages

Employee Vigilance Through the Power of Hello now translated into 12 languages

Author: Susan Schneider, Cybersecurity and Infrastructure Security Agency

Executive Order on Improving the Nation’s Cybersecurity

Read more about Executive Order on Improving the Nation’s Cybersecurity

On May 12, President Biden signed an Executive Order on Improving the Nation’s Cybersecurity to support our nation’s cybersecurity and protect the critical infrastructure and Federal Government networks underlying our nation’s economy and way of life.

CISA Launches a Space Systems Critical Infrastructure Working Group

Read more about CISA Launches a Space Systems Critical Infrastructure Working Group

The Cybersecurity and Infrastructure Security Agency (CISA) today announced the formation of a Space Systems Critical Infrastructure Working Group, a mix of government and industry members that will identify and develop strategies to minimize risks to space systems that support the nation’s critical infrastructure. The

Last Published Date: May 13, 2021

CISA Releases Second Graphic Novel to Combat Disinformation on National Superhero Day

Read more about CISA Releases Second Graphic Novel to Combat Disinformation on National Superhero Day

In celebration of National Superhero Day, the Cybersecurity and Infrastructure Security Agency (CISA) is releasing its second graphic novel in the Resilience Series to educate the public on the dangers and risks associated with dis- and misinformation campaigns.

Last Published Date: April 28, 2021

CISA Administrative Subpoena

Read more about CISA Administrative Subpoena

The Cybersecurity and Infrastructure Security Agency (CISA) works around the clock to identify and mitigate cybersecurity vulnerabilities in the digital systems that underpin much of our nation’s critical infrastructure. A key element of these efforts includes notifying critical infrastructure entities of vulnerabilities in their systems. However, at times CISA analysts identify or receive information about vulnerable systems, but cannot determine contact information for the owners or operators of the systems.

Signature Verification

Read more about Signature Verification

All CISA administrative subpoenas will be signed with a cryptographic digital signature by an authorized CISA representative.