U.S. flag

An official website of the United States government

Government Website

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Safely connect using HTTPS

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.


  1. Home
  2. News
  3. Publications Library
  4. Cybersecurity


Our daily life, economic vitality, and national security depend on a stable, safe, and resilient cyberspace.

  • NCSAM Resources

    October is National Cybersecurity Awareness Month (NCSAM), a time to focus on how cybersecurity is a shared responsibility that affects all Americans. NCSAM is a collaborative effort between the U.S. Department of Homeland Security (DHS) and its public and private partners, including the National Cyber Security Alliance, to raise awareness about the importance of cybersecurity and individual cyber hygiene.

  • TSA Information Assurance Handbook

    This handbook implements the policies and requirements of the Transportation Security Administration (TSA) Management Directive (MD) 1400.3, Information Technology Security by establishing guidance applicable to the use, development, and maintenance of TSA Information Technology (IT) assets, networks, and systems.

  • 2018 AEP

    Analytic deliverables from the 2018 cycle of the Analytic Exchange Program

  • DHS National Cybersecurity Summit Fact Sheet

    The DHS National Cybersecurity Summit represents public-private partnership in action. By convening dozens of CEOs and senior executives with U.S. Cabinet secretaries and senior government officials, along with hundreds of senior risk and security officers across a wide range of critical infrastructure sectors, this Summit conveys the imperative that the evolving and increasingly sophisticated and persistent cybersecurity threat landscape compels a collective approach to defending networks and managing national risk.

  • DHS Cybersecurity Strategy

    This strategy provides the Department with a framework to execute our cybersecurity responsibilities during the next five years to keep pace with the evolving cyber risk landscape.

  • 2018 North Dakota LTTX Cybersecurity Overview and Resource Guide

    This Leadership Tabletop Exercise Cybersecurity Overview and Resource Guide provides members of the academic community with a summary of the format and structure of the pilot LTTX event, hosted by the North Dakota University System, as a model for initiating critical conversations with campus leadership on their roles in preparedness for, response to, and recovery from campus emergencies.

  • 2017 NTTX Situation Manual

    This exercise is a part of a two-day event including seminars/workshops and a tabletop exercise (TTX) geared toward examining issues related to cybersecurity impacting physical infrastructure systems on college and university campuses. The TTX portion of the event consists of a scenario-driven, facilitated discussion and is designed to examine roles, responsibilities, authorities, and capabilities to enhance the resilience of institutions of higher education.

  • Securing the Internet of Things

    Securing the Internet of Things

  • DHS Strategic Industry Conversation

    Strategic Industry Conversations (SIC) are events that enable program area topic discussions between DHS leaders and industry.

  • DHS/CISA/PIA-030 Continuous Diagnostics and Mitigation (CDM)

    The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Cybersecurity Division (CSD) developed the Continuous Diagnostics and Mitigation (CDM) program to support government-wide and agency-specific efforts to implement adequate, risk-based, and cost-effective cybersecurity. CDM provides continuous monitoring, diagnostics, and mitigation tools and services to strengthen the security posture of participating federal civilian departments and agencies’ systems and networks through the establishment of a suite of capabilities that enables network security officials and administrators to know the state of their respective networks at any given time, informs Chief Information Officers (CIO) and Chief Information Security Officers (CISO) on the relative risks of threats, and makes it possible for government personnel to identify and mitigate vulnerabilities. This PIA Update is being conducted to assess the privacy risks related to the CDM Shared Service Platform, which makes CDM capabilities available for use by non-Chief Financial Officer (CFO) Act agencies. The Shared Service Platform is provided to non-CFO Act agencies using a third-party contractor to CISA that connects the agency’s network(s) to the platform. Additionally, this PIA Update examines the CDM Agency-Wide Adaptive Risk Enumeration (AWARE) capability. The CDM AWARE capability allows participating agencies to better assess and prioritize cybersecurity risks by assigning a risk score to agency vulnerabilities.