Cybersecurity Information Sharing Act of 2015 Procedures and Guidance


As mandated by the Cybersecurity Information Sharing Act of 2015, the Department certified the operability of AIS in March 2016 and released guidance to help non-federal entities share cyber threat indicators with the Federal Government. The Department also released policies and procedures relating to the receipt and use of cyber threat indicators by federal entities, guidelines relating to privacy and civil liberties in connection with the exchange of those indicators, and guidance to federal agencies on sharing information in the government’s possession. 

Note: The Non-Federal Entity Sharing Guidance under the Cybersecurity Information Sharing Act of 2015 was updated in October 2020.