U.S. flag

An official website of the United States government

Government Website

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Safely connect using HTTPS

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Archived Content

In an effort to keep DHS.gov current, the archive contains outdated information that may not reflect current policy or programs.

Cybersecurity and Critical Infrastructure

Cybersecurity and Critical Infrastructure

As the nation's risk advisor, the Cybersecurity and Infrastructure Security Agency (CISA) brings our partners in industry and the full power of the federal government together to improve American cyber and infrastructure security.

Since the beginning of the Coronavirus threat, also known as COVID-19, CISA has been monitoring the evolving virus closely, taking part in interagency and industry coordination calls, and working with critical infrastructure partners to prepare for possible disruptions to critical infrastructure.

CISA continues to work closely with federal partners to prepare the nation for possible impacts of a COVID-19 outbreak.  This whole-of-nation effort is led by Health and Human Services through the Centers for Disease Control, with all other federal agencies, including CISA, in supporting roles.

CISA Hard at Work

Do you know how much critical work the men and women of the Cybersecurity and Infrastructure Security Agency (CISA) are doing behind the scenes to keep America safe? Acting Secretary Chad Wolf highlights the incredible efforts these DHS employees lead every day to protect the nation’s critical infrastructure and the homeland.​​

Critical Infrastructure

Functioning critical infrastructure is particularly important during the COVID-19 response for both public health and safety as well as community well-being. Certain critical infrastructure industries have a special responsibility to continue operations during these unprecedented times.

This guidance and accompanying list are intended to support state, local, and industry partners in identifying the critical infrastructure sectors, and the essential workers needed to maintain the services and functions Americans depend on daily, as well as the ability to operate resiliently during the COVID-19 pandemic response.

Essential Critical Infrastructure Workers: Communications. Dams. Chemical. Commercial Facilities. Critical Manufacturing. Dams. Defense Industrial Base. Emergency Services. Energy. Financial. Food & Agriculture. Government Facilities. Healthcare & Public Health. Information Technology. Transportations systems. Water. Nuclear Reactors, Materials, & Waste. Department of Homeland Security logo. CISA Cyber + Infrastructure.

This document also provides guidance to state, local, tribal, and territorial jurisdictions and the private sector on defining essential critical infrastructure workers. Promoting the ability of these workers to continue working during periods of community restriction, access management, social distancing, or closure orders/directives is crucial to community resilience and continuity of essential functions.


The CISA Insights: Risk Management for Novel Coronavirus (COVID-19) provides executives a tool to help them think through physical, supply chain, and cybersecurity issues that may arise from the spread of COVID-19.

On March 6, 2020 CISA released an alert reminding individuals to remain vigilant for scams related to COVID-19. Cyber actors may send emails with malicious attachments or links to fraudulent websites to trick victims into revealing sensitive information or donating to fraudulent charities or causes. Exercise caution in handling any email with a COVID-19-related subject line, attachment, or hyperlink, and be wary of social media pleas, texts, or calls related to COVID-19.

On March 13, 2020, CISA released an alert encouraging organizations to adopt a heightened state of cybersecurity urging organizations to adopt a heightened state of cybersecurity when considering alternate workplace options for their employees. Remote work options—or telework—require an enterprise virtual private network (VPN) solution to connect employees to an organization’s information technology (IT) network.

Contact CISA to report incidents, phishing, malware, and other cybersecurity concerns.

Last Updated: 11/03/2023
Was this page helpful?
This page was not helpful because the content