You are here


Our daily life, economic vitality, and national security depend on a stable, safe, and resilient cyberspace.

Cyberspace and its underlying infrastructure are vulnerable to a wide range of risk stemming from both physical and cyber threats and hazards. Sophisticated cyber actors and nation-states exploit vulnerabilities to steal information and money and are developing capabilities to disrupt, destroy, or threaten the delivery of essential services.

On November 16, 2018, President Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018. This landmark legislation elevates the mission of the former National Protection and Programs Directorate (NPPD) within DHS and establishes the Cybersecurity and Infrastructure Security Agency (CISA). CISA builds the national capacity to defend against cyber attacks and works with the federal government to provide cybersecurity tools, incident response services and assessment capabilities to safeguard the ‘.gov’ networks that support the essential operations of partner departments and agencies.

For cybersecurity, CISA's main focus areas include:

Vulnerability Disclosure Program

The Vulnerability Disclosure Program (VDP) is the digital embodiment of "If You See Something, Say Something®.  Part of the SECURE Technology Act, the program establishes a relationship between security researchers and the Federal Government to identify and disclose potential cybersecurity vulnerabilities.

DHS recognizes that security researchers are essential to protecting organizations and the Internet as a whole. Therefore, DHS invites reports of any vulnerabilities discovered on all internet-accessible DHS information systems, applications, and websites.

This form:

  1. allows the individuals, organizations, and companies who discover vulnerabilities in the information systems of DHS to report their findings to the DHS; and
  2. gives DHS first insight into newly discovered vulnerabilities within our VDP scope.

The information submitted to DHS using this form will be used for mitigation of cybersecurity vulnerabilities.

Additional information

Last Published Date: March 1, 2021

Cybersecurity News & Updates RSS Icon

Apr 12

Secretary of Homeland Security Alejandro N. Mayorkas and U.S. Attorney General Merrick B. Garland participated in the annual Five Country Ministerial (FCM), hosted by New Zealand and joined by the United Kingdom, Australia, and Canada.  Ministers discussed global security initiatives; migration and border security measures during COVID-19; strategies for improving cybersecurity, including tackling ransomware more effectively; addressing threats in online environments; countering foreign interference; and fighting the spread of violent extremism and terrorism.

Apr 9

The Biden-Harris Administration submitted to Congress the President’s priorities for fiscal year 2022 discretionary spending.  The budget invests in key DHS missions, including repairing a broken immigration system, better managing the border with advanced technology, protecting civil rights, and bolstering cyber defenses and resilience.

Apr 8

Recently, the Department of Homeland Security (DHS) Cybersecurity Service Provider (CSP) program provided a cybersecurity assessment of the Department of Justice (DOJ) Security Operations Center (SOC).

Was this page helpful?

This page was not helpful because the content:
Back to Top