EXERCISE, FACT SHEET, PUBLICATION

Cyber Storm IX: National Cyber Exercise

View All Cyber Storm Final Reports
Related topics:
Cybersecurity Best Practices, Critical Infrastructure Security and Resilience

In April 2024, CISA hosted the ninth iteration of the biennial National Cyber Exercise, Cyber Storm IX. Cyber Storm IX provided over 2,200 participants the opportunity to examine their response to an attack on cloud resources, identifying ways to increase their organization’s cyber resilience under the cloud shared responsibility model. 

Strengthening Cybersecurity Preparedness

Today’s dynamic cyber threat environment requires constant reassessment of our nation’s cyber incident response capabilities. Cyber Storm IX examined all aspects of cyber incident response by depicting a coordinated cyberattack impacting critical infrastructure system confidentiality, integrity, and availability. Organizations evaluated internal cyber incident response plans, while coordinating with those at the federal, state, local, and private sector levels. Throughout the exercise lifecycle, participants worked together to identify applicable strengths and weaknesses, and ultimately find solutions to strengthen their cybersecurity preparedness.

Cyber Storm IX Quick Facts

Date: April 2024

Duration: 3 days of live play

Exercise Stakeholders

  • Federal departments and agencies
  • Industry partners from critical infrastructure sectors
  • International partners
  • State and local governments

Cyber Storm IX Participation

  • Cyber Storm IX included organizations across federal, state, and international governments, and the private sector.
  • Participating organizations worked directly with CISA to understand CISA’s role and capabilities in a cyberattack
  • Participants operated in working groups to meet organization- and sector-specific objectives.
  • Benefits of participation included exercising organizational response plans and capabilities, fostering relationships with counterparts, and improving organizational and national cyber readiness.

Cyber Storm IX Goal and Objectives

Cyber Storm IX’s primary goal was to strengthen cybersecurity preparedness and response capabilities by exercising policies, processes, and procedures for identifying and responding to a multi-sector significant cyber incident impacting critical infrastructure.

Cyber Storm IX specific objectives were to:

  1. Examine the effectiveness of national cybersecurity plans and policies
  2. Explore the roles and responsibilities during a cyber incident with potential or actual physical impacts
  3. Strengthen information sharing and coordination mechanisms used during a cyber incident
  4. Foster public and private partnerships and improve their ability to share relevant and timely information across partners

Past Highlights

Each Cyber Storm builds on lessons learned from previous real-world incidents, ensuring that participants face more sophisticated and challenging exercises every two years. 

Review All Cyber Storms

Contact

For additional information on Cyber Storm exercises, contact cyberstorm@mail.cisa.dhs.gov.

Final Report

The Cyber Storm IX After-Action Report reviews the purpose, scope, planning and execution, scenario, and the significant findings of the exercise.

Resource Materials

Resource Name File Type File Size Language
Cyber Storm IX Fact Sheet PDF, 523.22 KB 523.22 KB
Cyber Storm IX After-Action Report PDF, 924.81 KB 924.81 KB

Tags

Audience: Federal Government, Industry, State, Local, Tribal, and Territorial Government
Programs: Cyber Storm: Securing Cyber Space
Topics: Critical Infrastructure Security and Resilience, Cybersecurity Best Practices

Related Resources