Cybersecurity and Infrastructure Security Agency

??NEW VIDEO!! ?? Check out the latest from our animated series. ??And share it with a coworker! Together, we can #SecureOurWorld ?? #CybersecurityAwarenessMonth

ICYMI, we released Sector-Specific Goals (SSGs) for the Chemical Sector. The Chemical SSGs are voluntary practices with high-impact security actions, beyond the Cross-Sector CPGs, that outline measures Chemical Sector businesses and critical infrastructure owners can take to protect themselves against cyber threats. To learn more, visit https://lnkd.in/dM_gAyV6

Today, we published an advisory, Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a U.S. Critical Infrastructure Sector Organization. Lessons learned from this assessment that can benefit all organizations include: - Assess and ensure sufficient controls to prevent and detect malicious activity; - Require continuous training, support, and resources to implement secure software configurations and detect malicious activity; and - Effective organizational leadership will not minimize the business risk of known attack vectors or deprioritize the treatment of a vulnerability their own cybersecurity team identifies. Also, the findings in this advisory illustrate the outsized burden and costs of compensating for insecure software and hardware borne by critical infrastructure owners and operators. CISA urges software manufacturers to embrace Secure by Design principles and implement the recommended actions and mitigations to improve security outcomes of their customers from real-world threats. Network defenders and software manufacturers are encouraged to review this advisory: https://go.dhs.gov/U8Y

In observance of National Critical Infrastructure Security and Resilience Month, along with the Office of the Director of National Intelligence, we released NEW guidance to assist critical infrastructure owners and operators to detect and mitigate efforts by foreign intelligence entities to disrupt U.S. critical infrastructure. As a nation, we are seeing continued cyber and physical threats to critical infrastructure Americans rely on every day. U.S. adversaries and their foreign intelligence entities understand the importance of the critical infrastructure sectors and how degrading them could hinder our national response to events. Resolve to #BeResilient. Read more about the threat and mitigation steps at https://lnkd.in/e-n8Z6nw

Does your organization face challenges with implementing phishing-resistant authentication, such as Fast IDentity Online (FIDO) capabilities? Today, with USDA, we published a report that outlines how USDA overcame phishing-resistant authentication enforcement challenges. If your organization faces similar challenges, we encourage you to review this report to see if you can implement similar actions as USDA and provide stronger security for your people. https://go.dhs.gov/U7E

We’re at the International Association of Emergency Managers (IAEM) Annual Conference & EMEX! Stop by Bartolin Hall, Exhibit Space #803 at the Convention Center at The Broadmoor to learn more about our latest tools and resources for emergency management.

In collaboration with industry experts and security professionals, we developed the Venue Guide for Security Considerations. Applying the guide will enable venue operators to effectively identify and manage risk. This guide serves as a broad catalog to support safe and secure day-to day operations and event management planning and execution. The guide outlines physical security considerations at venues and special events. These guidelines help conduct risk assessment analysis to identify and address security vulnerabilities. Reviewing and applying these security considerations will help venue operators to become proactive and meet physical security expectations. https://go.dhs.gov/UhH

New Date & Special Guest Alert! Join us for our next CISA Live! on Tuesday, November 26 as Dr. David Mussington, CISA’s Executive Assistant Director for Infrastructure Security, teams up with Caitlin Durkovich, Deputy Assistant to the President and Deputy Homeland Security Advisor for Resilience & Response at the White House NSC. They’ll explore the evolution of critical infrastructure security and resilience and highlight tools to help all Americans Resolve to be Resilient. Plus, don’t miss the chance to ask your questions during the live Q&A! Learn more and register here: https://lnkd.in/eSKVjUCp

Shopping for the holidays online? Don’t forget to think about PHISHING—and how to avoid getting scammed. Learn more at https://lnkd.in/gbR6Tdch #SecureOurWorld

We’re proud to work alongside our law enforcement partners, supporting them through training and education. Recently, we had the opportunity to connect with IT specialists from law enforcement agencies across western Washington. Together, we tackled key cyber topics—ranging from securing cloud environments to safeguarding sensitive information commonly used in police work. If you’re in law enforcement and want to learn how we can help strengthen your cybersecurity, visit: https://lnkd.in/eNk5Gp67