Cybersecurity
Our daily life, economic vitality, and national security depend on a stable, safe, and resilient cyberspace.
-
Protecting and Preparing the Homeland Against Threats of Electromagnetic Pulse and Geomagnetic Disturbances
Extreme electromagnetic incidents caused by an intentional electromagnetic pulse (EMP) attack or a naturally occurring geomagnetic disturbance (GMD, also referred to as "space weather") could damage significant portions of the Nation's critical infrastructure, including the electrical grid, communications equipment, water and wastewater systems, and transportation modes.
-
NCSAM Resources
October is National Cybersecurity Awareness Month (NCSAM), a time to focus on how cybersecurity is a shared responsibility that affects all Americans. NCSAM is a collaborative effort between the U.S. Department of Homeland Security (DHS) and its public and private partners, including the National Cyber Security Alliance, to raise awareness about the importance of cybersecurity and individual cyber hygiene.
-
TSA Information Assurance Handbook
This handbook implements the policies and requirements of the Transportation Security Administration (TSA) Management Directive (MD) 1400.3, Information Technology Security by establishing guidance applicable to the use, development, and maintenance of TSA Information Technology (IT) assets, networks, and systems.
-
DHS National Cybersecurity Summit Fact Sheet
The DHS National Cybersecurity Summit represents public-private partnership in action. By convening dozens of CEOs and senior executives with U.S. Cabinet secretaries and senior government officials, along with hundreds of senior risk and security officers across a wide range of critical infrastructure sectors, this Summit conveys the imperative that the evolving and increasingly sophisticated and persistent cybersecurity threat landscape compels a collective approach to defending networks and managing national risk.
-
DHS Cybersecurity Strategy
This strategy provides the Department with a framework to execute our cybersecurity responsibilities during the next five years to keep pace with the evolving cyber risk landscape.
-
2018 North Dakota LTTX Cybersecurity Overview and Resource Guide
This Leadership Tabletop Exercise Cybersecurity Overview and Resource Guide provides members of the academic community with a summary of the format and structure of the pilot LTTX event, hosted by the North Dakota University System, as a model for initiating critical conversations with campus leadership on their roles in preparedness for, response to, and recovery from campus emergencies.
-
Homeland Security Advisory Council Final Report of the Cybersecurity Subcommittee
This report offers recommendations to meet a poorly understood but absolutely vital challenge for U.S. cybersecurity: ensuring that interdependent infrastructure sectors can work together to restore critical services after a cyberattack, in partnership with the Department of Homeland Security (DHS) and other Federal and state agencies.
-
DHS/S&T/PIA-006 Protected Repository for the Defense of Infrastructure Against Cyber Threats
DHS/S&T/PIA-006 Protected Repository for the Defense of Infrastructure Against Cyber Threats -
DHS/CISA/PIA-028 Enhanced Cybersecurity Services (ECS)
Enhanced Cybersecurity Services (ECS) is a voluntary program that shares indicators of malicious cyber activity between the Department of Homeland Security (DHS) and participating Commercial Service Providers (CSPs) and Operational Implementers (OIs). The Cybersecurity and Infrastructure Security Agency (CISA) is conducting this Privacy Impact Assessment (PIA) Update to reflect ECS’ support by Executive Order 13636, Improving Critical Infrastructure Cybersecurity, announce the expansion of service beyond Critical Infrastructure sectors to all U.S.-based public and private entities, and to introduce the new Netflow Analysis service. November 2015.
-
Enhanced Cybersecurity Services Program Privacy Compliance Review
The Enhanced Cybersecurity Services Program (ECS) is a voluntary Department of Homeland Security (DHS) program in which the National Protection and Programs Directorate’s (NPPD) Cybersecurity and Communications provides indicators of malicious cyber activity to participating commercial service providers. The purpose of the program is to assist the owners and operators of critical infrastructure in enhancing their ability to protect their systems from unauthorized access, exploitation, or data exfiltration through a voluntary information sharing program. In performing the Privacy Compliance Review (PCR), the DHS Privacy Office found that NPPD developed the ECS Program and its related processes with privacy-protective objectives in mind. NPPD continues to operate the ECS Program and its related processes with strong privacy oversight, which allows NPPD to identify and mitigate privacy risks as the program evolves and matures.