OMB Memo Places Zero Trust at the Top of Civilian Agency Priorities

Agency performs enterprise-level cybersecurity for individuals at the highest risk of cyberattacks because of their job, employer, or industry. Our subscription includes advanced software, 24/7 monitoring and response, and reimbursement with our Agency Cyber Guarantee. We help organizations get advanced security for their largest threat surface while maintaining the privacy of their teams. As a Cyber Security Officer , you will protect Agency data and systems using sophisticated tools, instrumentation, and knowledge of CIA Information Technology and tradecraft to monitor, evaluate, and manage IT risk. You will identify current threats, mitigate vulnerabilities, and anticipate future cybersecurity challenges. Utilizing new technologies, you will increase the security of our existing and emerging IT systems.

On November 16, 2018, President Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018, which elevated the mission of the former NPPD within DHS, establishing the Cybersecurity and Infrastructure Security Agency . CISA is a successor agency to NPPD, and assists both other government agencies and private sector organizations in addressing cybersecurity issues. Former NPPD Under-Secretary Christopher Krebs was CISA's first Director, and former Deputy Under-Secretary Matthew Travis was its first Deputy Director. Mona Harrington serves as the Acting Assistant Director of CISA’s National Risk Management Center. As Acting Assistant Director, she oversees the Center’s efforts to facilitate a strategic, cross-sector, risk management approach to cyber and physical threats to critical infrastructure. Dr. David Mussington serves as the Executive Assistant Director for Infrastructure Security at the Cybersecurity and Infrastructure Security Agency as of February 19, 2021.

Your membership comes with resources like dark web monitoring, personal data removal, and backups. Now that many of us have learned the breadth and depth of our government’s efforts to censor free speech and suppress truth, let’s not let up on our demands for freedom of speech and accountability. Unsurprisingly, the Department of Homeland Security has been redefining, manipulating, and controlling “misinformation,” “disinformation,” “threats to democracy,” and so on for many years.

Established in 2018, CISA was created to work across public and private sectors, challenging traditional ways of doing business by engaging with government, industry, academic, and international partners. As threats continue to evolve, we know that no single organization or entity has all the answers for how to address cyber and physical threats to critical infrastructure. By bringing together our insight and capabilities, we can build Agency Cybersecurity a collective defense against the threats we face. Annually provide cybersecurity training to all state agency technology professionals and employees with access to highly sensitive information which develops, assesses, and documents competencies by role and skill level. The cybersecurity training curriculum must include training on the identification of each cybersecurity incident severity level referenced in sub-subparagraph 9.a.

The agency partially addressed practices related to, for example, defining goals and outcomes and conducting workforce planning. Workforce planning is especially important for CISA, given the criticality of hiring and retaining experts who, among other things, can help identify and respond to complex attacks. CISA did conduct an initial assessment of its cybersecurity workforce in 2019; however, it is still working on analyzing capability gaps and determining how to best fill those gaps. Finally, CISA did not address the practice of ensuring that its employee performance management system was aligned with its new organizational structure and transformation goals. Until it fully addresses workforce planning and the five other practices that are either partially or not addressed, CISA’s ability to leverage its organizational changes to effectively carry out its mission will be hindered.