Browse Definitions :
Definition

Cybersecurity and Infrastructure Security Agency (CISA)

Contributor(s): Matthew Haughn

Cybersecurity and Infrastructure Security Agency (CISA) is a division of the Department of Homeland Security (DHS) that is tasked with the defense of the infrastructure of the internet and the charge to design measures to improve the infrastructure’s resilience and security.

CISA is constantly identifying and assessing threats to infrastructure. The organization consults with government and private sector providing cybersecurity tools, threat analysis and incident response across all .gov websites.

CISA facilitates defenses and improvements by way of both private and public sector partnerships. Tools for technical coordination and assistance are delivered country-wide to partners in order to develop emergency communications. The organization concerns itself with threats to infrastructure from sources such as natural disaster, cyberwarfare, terrorist attack or other man-made threats.

Within the CISA is the National Risk Assessment Center. This internal group is assigned with the identification and analysis of the most serious threats to infrastructure. The group pays close attention to all threats that may impact those elements of the government and private sector that are deemed vital to societal function, or critical infrastructure.

CISA was created when President Donald Trump signed the Cybersecurity and Infrastructure Security Act of 2018 into law. While the CISA is under the oversight of the DHS, it is a standalone agency of the United States.

This was last updated in August 2019

Continue Reading About Cybersecurity and Infrastructure Security Agency (CISA)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

  • RAM (Random Access Memory)

    RAM (Random Access Memory) is the hardware in a computing device where the operating system (OS), application programs and data ...

  • business impact analysis (BIA)

    Business impact analysis (BIA) is a systematic process to determine and evaluate the potential effects of an interruption to ...

  • M.2 SSD

    An M.2 SSD is a solid-state drive that is used in internally mounted storage expansion cards of a small form factor.

Close