Policy, Strategy and Doctrinal Products

Congressional Election Security Resource Library

Securing election infrastructure from new and evolving threats is a vital national interest that requires a whole-of-society approach. This library provides Congressional Members and staff critical resources that can be shared with State and local governments, election officials, campaigns, the vendor community, and voters to secure election-related assets, facilities, networks and systems from cyber and physical risks.

CISA Strategic Intent

This document lays out the strategic vision and operational priorities of the CISA Director. It provides a general approach for how we execute our responsibilities and serves as a reference point for our employees and partners to guide our work and create unity of effort. It aims to position us to successfully meet our mission in the coming years and decades. It serves as the interim strategy as we develop a longer-term strategic plan.

Security and Resiliency Guide and Annexes

The Security and Resiliency Guide (SRG C-IED) and annexes are designed to help stakeholders take proactive steps to enhance their security and resiliency for potential IED incidents by providing guidance and resources consistent with broader all-hazards preparedness and risk management principles. The guide has five accompanying annexes (Sports Leagues and Venues, Outdoor Events, Public Assembly, Lodging, and Healthcare and Public Health Facility) that provide tailored information specifically for security managers and staff as they seek to improve the preparedness of their venues.

Supporting Transparency in the Marketplace Summary

Presidential Executive Order (EO) 13800 - Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, required the Secretary of the Department of Homeland Security (DHS), in coordination with the Secretary of Commerce to provide a report to the President by August 9, 2017 that examines the sufficiency of existing Federal policies and practices to promote appropriate market transparency of cybersecurity risk management practices, with a focus on publicly traded critical infrastructure entities.

CFATS Penalty Policy

The Policy for Assessing Civil Penalties Under the Chemical Facility Anti-Terrorism Standards (CFATS) outlines the policies and procedures that the Cybersecurity and Infrastructure Security Agency (CISA) follows to assess civil penalties for chemical facilities found to be in violation of CFATS.