News & Events
Read and watch the latest news, multimedia, and other important communications from CISA. View a calendar of upcoming events CISA hosts and participates in.
Featured Articles
View More ArticlesCISA, NSA, FBI and International Cybersecurity Authorities Publish Guide on The Case for Memory Safe Roadmaps
DEC 06, 2023
| PRESS RELEASE
Readout from CISA’s 2023 Fourth Quarter Cybersecurity Advisory Committee Meeting
DEC 06, 2023
| PRESS RELEASE
Yesterday, the Cybersecurity and Infrastructure Security Agency (CISA) held its fourth and final 2023 quarterly Cybersecurity Advisory Committee (CSAC) meeting.
Cybersecurity Performance Goals: Assessing How CPGs Help Organizations Reduce Cyber Risk
DEC 05, 2023
| BLOG
Recently, CISA identified positive trends on two CPGs across nearly 3,500 organizations enrolled in our Vulnerability Scanning service. Read about the findings in this blog.
President Biden signs Executive Order 14111
DEC 04, 2023
| BLOG
President Biden signed Executive Order 14111 to reinforce the importance of, and strengthen, the security of Executive Branch federal facilities in the face of both persistent and emerging threats.
Alerts & Directives
View More AdvisoriesBOD 23-02: Mitigating the Risk from Internet-Exposed Management Interfaces
This Directive requires agencies to take steps to reduce the attack surface created by insecure or misconfigured management interfaces across certain classes of devices.
BOD 23-01: Improving Asset Visibility and Vulnerability Detection on Federal Networks
FCEBs are directed to make measurable progress toward enhancing visibility into agency assets and associated vulnerabilities by focusing on asset discovery and vulnerability enumeration.
BOD 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities
This directive establishes a CISA-managed catalog of known exploited vulnerabilities that carry significant risk to the federal enterprise and establishes requirements for agencies to remediate any such vulnerabilities included in the catalog.
BOD 20-01: Develop and Publish a Vulnerability Disclosure Policy
This directive requires each agency to develop and publish a vulnerability disclosure policy (VDP) and maintain supporting handling procedures.
Upcoming Events
View More EventsDEC
7
DEC
19
CDM Agency Dashboard Role-Based Training - System Security Analyst (CDM203)
TRAINING | VIRTUAL/ONLINE
JAN
4
Introduction to CDM Enabled Threat Hunting (CETH) Using the CDM Agency Dashboard (CDM210)
TRAINING | VIRTUAL/ONLINE
JAN
8
Media Inquiries
Please direct media inquiries to CISAMedia@cisa.dhs.gov or call 703-235-2010.