U.S. flag

An official website of the United States government

Government Website

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Safely connect using HTTPS

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.


  1. Home
  2. News
  3. Publications Library
  4. Cybersecurity


Our daily life, economic vitality, and national security depend on a stable, safe, and resilient cyberspace.

  • DHS Strategic Industry Conversation

    Strategic Industry Conversations (SIC) are events that enable program area topic discussions between DHS leaders and industry.

  • DHS/CISA/PIA-030 Continuous Diagnostics and Mitigation (CDM)

    The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Cybersecurity Division (CSD) developed the Continuous Diagnostics and Mitigation (CDM) program to support government-wide and agency-specific efforts to implement adequate, risk-based, and cost-effective cybersecurity. CDM provides continuous monitoring, diagnostics, and mitigation tools and services to strengthen the security posture of participating federal civilian departments and agencies’ systems and networks through the establishment of a suite of capabilities that enables network security officials and administrators to know the state of their respective networks at any given time, informs Chief Information Officers (CIO) and Chief Information Security Officers (CISO) on the relative risks of threats, and makes it possible for government personnel to identify and mitigate vulnerabilities. This PIA Update is being conducted to assess the privacy risks related to the CDM Shared Service Platform, which makes CDM capabilities available for use by non-Chief Financial Officer (CFO) Act agencies. The Shared Service Platform is provided to non-CFO Act agencies using a third-party contractor to CISA that connects the agency’s network(s) to the platform. Additionally, this PIA Update examines the CDM Agency-Wide Adaptive Risk Enumeration (AWARE) capability. The CDM AWARE capability allows participating agencies to better assess and prioritize cybersecurity risks by assigning a risk score to agency vulnerabilities.

  • Loaned Executive Program Assignment Announcement for Senior Advisor, Financial Services Integration, CS&C

    The U.S. Department of Homeland Security (DHS) seeks to bring in one or more Loaned Executive(s) to advise the Office of Cybersecurity & Communications (CS&C) on the development and advancement of integration between the National Cybersecurity and Communications Integration Center (NCCIC) and the “financial services operation center.”

  • Cyber Incident Reporting: A Unified Message for Reporting to the Federal Government

    Cyber Incident Reporting: A Unified Message for Reporting to the Federal Government

  • Exemplar Training Announcement-Cybersecurity

    Exemplar Training Announcement-Cybersecurity

  • Exemplar Training Announcement - Physical and Cybersecurity Integration

    The U.S. Department of Homeland Security (DHS) through the Exemplar Pilot Program seeks to send one or more DHS employees from its National Protection and Programs Directorate (NPPD) to a for-profit private sector company for training purposes.  The DHS employee will receive technical knowledge of a company’s approach to physical and cybersecurity. This effort is in direct support of the implementation of the National Infrastructure Protection Plan and the nexus between physical and cybersecurity.

  • Homeland Security Advisory Council Final Report of the Cybersecurity Subcommittee

    This report offers recommendations to meet a poorly understood but absolutely vital challenge for U.S. cybersecurity: ensuring that interdependent infrastructure sectors can work together to restore critical services after a cyberattack, in partnership with the Department of Homeland Security (DHS) and other Federal and state agencies.

  • DHS/S&T/PIA-006 Protected Repository for the Defense of Infrastructure Against Cyber Threats

    DHS/S&T/PIA-006 Protected Repository for the Defense of Infrastructure Against Cyber Threats

  • 2015 Fusion Center Assessment

    The Fusion Center Performance Program (FCPP) evaluates fusion centers' capabilities, including information sharing and supporting the Homeland Security Enterprise. It also strives to ensure functional consistency across the National Network of Fusion Centers, regardless of fusion center size, scope, geography or mission. Since its inception in 2011, the FCPP has helped fusion centers develop foundational capabilities, such as having key plans, policies, and SOPs. As a result of the steady success since 2011, the 2015 Fusion Center Assessment serves as a closeout of the capabilities-based measures.

  • DHS/CISA/PIA-026 National Cybersecurity Protection System (NCPS)

    The National Cybersecurity Protection System (NCPS) is an integrated system for intrusion detection, analysis, intrusion prevention, and information sharing capabilities that are used to defend the federal civilian government’s information technology infrastructure from cyber threats. The NCPS includes the hardware, software, supporting processes, training, and services that are developed and acquired to support its mission. The Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA), National Cyber Security Division (NCSD) is conducting this Privacy Impact Assessment (PIA) because personally identifiable information (PII) may be collected by the NCPS, or through submissions of known or suspected cyber threats received by the United States–Computer Emergency Readiness Team (US-CERT) for analysis. This PIA will serve as a replacement for previously published PIAs submitted by NSCD for the 24/7 Incident Handling Center (March 29, 2007), and the Malware Lab Network (May 4, 2010), and is a program-focused PIA to better characterize the efforts of NCPS and US-CERT.