U.S. flag

An official website of the United States government

Government Website

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Safely connect using HTTPS

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.


  1. Home
  2. News
  3. Publications Library
  4. Cybersecurity


Our daily life, economic vitality, and national security depend on a stable, safe, and resilient cyberspace.

  • NCSAM Resources

    October is National Cybersecurity Awareness Month (NCSAM), a time to focus on how cybersecurity is a shared responsibility that affects all Americans. NCSAM is a collaborative effort between the U.S. Department of Homeland Security (DHS) and its public and private partners, including the National Cyber Security Alliance, to raise awareness about the importance of cybersecurity and individual cyber hygiene.

  • TSA Information Assurance Handbook

    This handbook implements the policies and requirements of the Transportation Security Administration (TSA) Management Directive (MD) 1400.3, Information Technology Security by establishing guidance applicable to the use, development, and maintenance of TSA Information Technology (IT) assets, networks, and systems.

  • DHS National Cybersecurity Summit Fact Sheet

    The DHS National Cybersecurity Summit represents public-private partnership in action. By convening dozens of CEOs and senior executives with U.S. Cabinet secretaries and senior government officials, along with hundreds of senior risk and security officers across a wide range of critical infrastructure sectors, this Summit conveys the imperative that the evolving and increasingly sophisticated and persistent cybersecurity threat landscape compels a collective approach to defending networks and managing national risk.

  • DHS Cybersecurity Strategy

    This strategy provides the Department with a framework to execute our cybersecurity responsibilities during the next five years to keep pace with the evolving cyber risk landscape.

  • 2018 North Dakota LTTX Cybersecurity Overview and Resource Guide

    This Leadership Tabletop Exercise Cybersecurity Overview and Resource Guide provides members of the academic community with a summary of the format and structure of the pilot LTTX event, hosted by the North Dakota University System, as a model for initiating critical conversations with campus leadership on their roles in preparedness for, response to, and recovery from campus emergencies.

  • Homeland Security Advisory Council Final Report of the Cybersecurity Subcommittee

    This report offers recommendations to meet a poorly understood but absolutely vital challenge for U.S. cybersecurity: ensuring that interdependent infrastructure sectors can work together to restore critical services after a cyberattack, in partnership with the Department of Homeland Security (DHS) and other Federal and state agencies.

  • DHS/S&T/PIA-006 Protected Repository for the Defense of Infrastructure Against Cyber Threats

    DHS/S&T/PIA-006 Protected Repository for the Defense of Infrastructure Against Cyber Threats
  • DHS/CISA/PIA-028 Enhanced Cybersecurity Services (ECS)

    Enhanced Cybersecurity Services (ECS) is a voluntary program that shares indicators of malicious cyber activity between the Department of Homeland Security (DHS) and participating Commercial Service Providers (CSPs) and Operational Implementers (OIs). The Cybersecurity and Infrastructure Security Agency (CISA) is conducting this Privacy Impact Assessment (PIA) Update to reflect ECS’ support by Executive Order 13636, Improving Critical Infrastructure Cybersecurity, announce the expansion of service beyond Critical Infrastructure sectors to all U.S.-based public and private entities, and to introduce the new Netflow Analysis service.  November 2015.

  • Enhanced Cybersecurity Services Program Privacy Compliance Review

    The Enhanced Cybersecurity Services Program (ECS) is a voluntary Department of Homeland Security (DHS) program in which the National Protection and Programs Directorate’s (NPPD) Cybersecurity and Communications provides indicators of malicious cyber activity to participating commercial service providers. The purpose of the program is to assist the owners and operators of critical infrastructure in enhancing their ability to protect their systems from unauthorized access, exploitation, or data exfiltration through a voluntary information sharing program.  In performing the Privacy Compliance Review (PCR), the DHS Privacy Office found that NPPD developed the ECS Program and its related processes with privacy-protective objectives in mind. NPPD continues to operate the ECS Program and its related processes with strong privacy oversight, which allows NPPD to identify and mitigate privacy risks as the program evolves and matures.

  • Cybersecurity and Privacy

    DHS employs a layered approach to privacy oversight for the department’s cybersecurity activities, beginning with the Chief Privacy Officer and extending through NPPD’s Component Privacy Officer and dedicated privacy staff across the Department.