Advanced search Help
Searching for terms: EXACT: "United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency" in: publisher
Clear all search criteria
Only 2/3! You are seeing results from the Public Collection, not the complete Full Collection. Sign in to search everything (see eligibility).
-
National Emergency Communications Plan (2019)
From the Message from the Director of the Cybersecurity and Infrastructure Security Agency: "The National Emergency Communications Plan (NECP) is the Nation's roadmap to ensuring emergency communications interoperability at all levels of government. The Cybersecurity and Infrastructure Security Agency leads the effort to update and implement the NECP, but it requires participation from the whole community to be successful. Since the last NECP release in 2014, the emergency communications landscape has experienced unprecedented change. The frequency and complexity of emergencies are on the rise during a time when technology is advancing at a faster pace than any other time in history. While responders still rely heavily on land mobile radio for voice communications, comprehensive strategies for emergency communications must integrate the full Emergency Communications Ecosystem, including broadband, alerts and warnings, social media, and Next Generation 911. Internet Protocol-based devices and applications have the potential to vastly improve emergency responder capabilities, yet also introduce new challenges such as cybersecurity threats, the need for a more technically skilled workforce, and shorter equipment lifecycles. The NECP emphasizes the need for strong governance structures, updated policies and procedures, as well as joint exercises and trainings to improve interoperability which ensures information is provided to the right people at the right time. The 2019 NECP update was developed in partnership with Federal, state, local, tribal, and territorial jurisdictions and the private sector."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-09
-
Cyber Essentials (Fall 2019)
From the Document: "Reducing your organization's cyber risks requires a holistic approach -- similar to the approach you would take to address other operational risks. [...] Managing cyber risks requires building a culture of cyber readiness."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019
-
Guide to Critical Infrastructure Security and Resilience
From the Foreword: "The U.S. Department of Homeland Security, in collaboration with the U.S. Department of State, has prepared this guide to serve as an overview of the approach to critical infrastructure security and resilience adopted in the United States. As attacks on soft targets and crowded places continue across the globe, the need to address current and emerging challenges increases. Therefore, the Department of Homeland Security and Department of State are working together to enhance domestic and global security, with ongoing programs, and recognizing that new approaches may be needed to address these evolving issues. The intent of this guide is to share basic information and U.S. lessons learned over the last 15 years, rather than to promote specific approaches. This information may apply to other countries, particularly those countries that are considering developing or refining their own voluntary and regulatory-based infrastructure security and resilience programs."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-11
-
Cybersecurity and Infrastructure Security Agency Strategic Intent: 'Defend Today, Secure Tomorrow'
From the Introduction: "This document lays out the strategic vision and operational priorities of the CISA [Cybersecurity and Infrastructure Security Agency] Director. It provides a general approach for how we execute our responsibilities and serves as a reference point for our employees and partners to guide our work and create unity of effort. It aims to position us to successfully meet our mission in the coming years and decades. It serves as the interim strategy as we develop a longer-term strategic plan. The common framework of goals and outcomes helps organize our mission execution and inform management decisions--including operations planning, requirements generation, budget formulation, and performance management. These are high-level outcomes that we will constantly seek to achieve; specific actions and milestones will appear in operational and organizational plans. These goals and outcomes give us a constant foundation for capability and direction as threats and the mission space dramatically evolve."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-08
-
Insider Threat Programs for the Critical Manufacturing Sector Implementation Guide
From the Document: "The 'Insider Threat Programs for the Critical Manufacturing Sector Implementation Guide' was developed to provide guidance and information for critical manufacturing organizations to establish insider threat programs. These programs serve to gather, monitor, and assess information for insider threat detection and mitigation strategies. Insider threat programs are designed to detect, deter, and mitigate the risks associated with trusted insiders and protect the privacy of the workforce while reducing potential harm to the organization. Effective insider threat programs deploy risk management strategies that identify the assets or resources to be protected, identify potential threats, determine vulnerabilities, assess risk, and deploy countermeasures."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-08
-
Infrastructure Security Month 2019 [toolkit]
From the Document: "How often do you think about the things that sustain the American way of life? Safe transportation networks that get us where we need to go. Reliable and secure communications and internet infrastructure that connect us to the online tools and systems we rely on. Clean, available water for drinking and sanitation. Chemicals that are integral to everything from plastics to food preservation to medicines, and the electricity that keeps everything running. What about the malls, sports arenas, office buildings and other commercial facilities that house the places we gather for work and recreation? Even the systems that support our democratic processes--voting machines and the systems that support voting--are critical. Critical infrastructure security and resilience also includes the people who gather for activities that are part of our lives: attending a house of worship, going to a concert or other event, even gathering in a crowded open venue like a holiday market or festival. These are just a few examples of the 16 critical infrastructure sectors and additional subsectors that are absolutely essential to the standard of living that Americans have come to expect and rely on every day. Yet most people take these things for granted. It's not until one of these systems breaks down that we truly appreciate all we have."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019
-
National Emergency Communications Plan (NECP): 2019 Update
From the Update Overview: "The National Emergency Communications Plan (NECP) is the Nation's strategic plan to strengthen and enhance emergency communications capabilities. The Cybersecurity and Infrastructure Security Agency (CISA) worked with over 3,500 Federal, state, local, tribal and territorial public safety agencies and organizations to develop the NECP. As a result, the updated NECP addresses the current gaps within emergency communications and promotes the innovation and integration of new technologies, while considering their associated risks. In addition, it provides guidance to drive the enhancements of the Nation's emergency communications capabilities."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019
-
Enhancing Post-Disaster Access for Restoration of Community Lifelines and Essential Services
From the Introduction: "Similar to other essential service industries, communications and utility providers require coordinated access into disaster areas as early as possible after an emergency in order to conduct damage assessments, repair communications-related critical infrastructure, and effectively and safely restore essential services to enable community recovery. Currently, there is no uniform or standardized process--established at the federal, state, or local levels--for managing access across jurisdictional lines. In many instances, this lack of a common access management process has significantly hindered restoration efforts, increased restoration times and recovery costs, and placed additional stress on affected communities."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-04-01
-
Overview of Risks Introduced by 5G Adoption in the United States
From the Key Findings: "The Department of Homeland Security (DHS)/Cybersecurity and Infrastructure Security Agency (CISA) assesses that Fifth Generation Mobile Network (5G) will present opportunities and challenges, and its implementation will introduce vulnerabilities related to supply chains, deployment, network security, and the loss of competition and trusted options."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-07-31
-
Cybersecurity and Infrastructure Security Agency: Fiscal Year 2019, SAFECOM Guidance on Emergency Communications Grants
From the Introduction: "The Department of Homeland Security (DHS) is mandated to administer responsibilities and authorities relating to the SAFECOM [safety communication] Program. Within DHS, the Cybersecurity and Infrastructure Security Agency (CISA) Emergency Communications Division--formerly the Office of Emergency Communications--is responsible for developing coordinated guidance for federal grant programs for public safety communications. As a result, CISA develops the annual SAFECOM Guidance on Emergency Communications Grants (SAFECOM Guidance) as a reference guide for entities applying for federal financial assistance for emergency communications projects. [...] The 'SAFECOM Guidance' provides general information on eligible activities, technical standards, and other terms and conditions that are common to most federal emergency communications grants. It aims to ensure that policies and standards across federal grant programs provide a consistent approach to improving emergency communications nationwide. The 'SAFECOM Guidance' achieves this consistency by aligning recommendations with the Nation's strategic plan for emergency communications, entitled the 'National Emergency Communications Plan' (NECP)."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019
-
Public Safety Communications Evolution [January 2019]
From the Document: "The Cybersecurity and Infrastructure Security Agency (CISA) developed this brochure in collaboration with SAFECOM and the National Council of Statewide Interoperability Coordinators (NCSWIC), with the support and input of public safety officials at multiple levels of government across the country. The Public Safety Communications Evolution brochure: 1. Helps educate the public safety community and elected and appointed officials about the technologies and services to support the future of public safety communications; 2. Describes the evolution of public safety communications and how legacy land mobile radio (LMR) communications used today continues to be the primary voice communications pathway for public safety personnel while the First Responder Network Authority's (FirstNet) Nationwide Public Safety Broadband Network (NPSBN) concurrently brings enhanced wireless broadband data communication capabilities through the deployment of a nationwide data network; 3. Discusses some ofthe most important requirements necessary to achieve the desired future long-term evolution of LMR technology networks and whether a transition is beneficial and operationally effective for the public safety community[.]"
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-01
-
Emergency Directive 19-01: Mitigate DNS Infrastructure Tampering
"In coordination with government and industry partners, the Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) is tracking a series of incidents involving Domain Name System (DNS) infrastructure tampering. CISA is aware of multiple executive branch agency domains that were impacted by the tampering campaign and has notified the agencies that maintain them. [...] To address the significant and imminent risks to agency information and information systems presented by this activity, this emergency directive requires the following near-term actions to mitigate risks from undiscovered tampering, enable agencies to prevent illegitimate DNS activity for their domains, and detect unauthorized certificates."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-01-22
-
Cybersecurity Directives [website]
"The Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security (DHS) develops and oversees the implementation of 'binding operational directives' and 'emergency directives,' which require action on the part of certain federal agencies in the civilian executive branch."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
-
Security of Soft Targets and Crowded Places--Resource Guide
From the Resource Matrix: "Segments of our society are inherently open to the general public, and by nature of their purpose do not incorporate strict security measures. Given the increased emphasis by terrorists and other extremist actors to leverage less sophisticated methods to inflict harm in public areas, it is vital that the public and private sectors collaborate to enhance security of locations such as transportation centers, parks, restaurants, shopping centers, special event venues, and similar facilities. Securing these locations is essential to preserving our way of life and sustaining the engine of our economy. The Infrastructure Security Division (ISD), part of the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), is committed to improving the security and resilience of soft targets by providing relevant tools, training, and programs to both the public and private sectors, and the general public. This guide is a catalog of ISD soft target resources, many of which were created in collaboration with our partners to ensure they are useful and reflective of the dynamic environment we live in."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2019-04
-
Emergency Support Function #14 -- Cross-Sector Business and Infrastructure
From the Introduction: "Businesses and infrastructure owners and operators have primary responsibility for managing their systems in emergencies, and unequalled expertise to do so. ESF [Emergency Support Function] #14 supports growing efforts to enable collaboration among critical infrastructure sectors and helps coordinate and sequence such operations to mitigate cascading failures and risks. ESF #14 also integrates SSA [Sector-Specific Agencies] incident response operations with ESFs and other relevant public-private sector coordinating entities. SSAs have critical roles, responsibilities, and authorities in partnering with infrastructure owners and operators in their respective sectors. ESF #14 works with SSAs, other ESFs, and their partners to support cross-sector planning and operations that facilitates integrated public and private incident response. To this end, the Federal Government enables--where possible--those businesses and infrastructure owners and operators that have the responsibilities, capabilities, and resources to stabilize their systems in support of community lifelines."
United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency; United States. Federal Emergency Management Agency
2019-10
-
Emergency Communications Governance Guide for State, Local, Tribal, and Territorial Officials (December 2018)
From the Executive Summary: "The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), in coordination with SAFECOM and the National Council of Statewide Interoperability Coordinators (NCSWIC), presents the '2018 Governance Guide for State, Local,Tribal, and Territorial Emergency Communications Officials' (Governance Guide). Since the 2015 release of the Governance Guide, CISA conducted the SAFECOM Nationwide Survey to collect data on existing public safety communications capabilities and gaps. The survey found strong leadership and governance structures are improving emergency communications planning, coordination, and decision-making. However, the findings also recognized continued challenges involving new entities beyond traditional responders, as well as integrating emerging technologies into public safety communications systems."
United States. Department of Homeland Security. SAFECOM; National Council of Statewide Interoperability Coordinators; United States. Department of Homeland Security. Cybersecurity and Infrastructure Security Agency
2018-12
1
