CISA Releases Updated Cybersecurity Performance Goals

Release Date

Today, we published stakeholder-based updates to the Cybersecurity Performance Goals (CPGs). Originally released last October, the CPGs are voluntary practices that businesses and critical infrastructure owners can take to protect themselves against cyber threats. The CPGs have been reorganized, reordered and renumbered to align closely with NIST CSF functions (Identify, Protect, Detect, Respond, and Recover) to help organizations more easily use the CPGs to prioritize investments as part of a broader cybersecurity program built around the CSF. 

CISA urges stakeholders to review and learn more by visiting Cross-Sector Cybersecurity Performance Goals.


This product is provided subject to this Notification and this Privacy & Use policy.