Election Infrastructure Incident Response Communications Guide

Election Infrastructure Incident Response Communications Guide

This guide helps election officials build their own election infrastructure incident communications playbook before an incident occurs.

Secure by Design. Joint Guide: Product Security Bad Practices

Product Security Bad Practices

Part of the #SecurebyDesign initiative, this guidance outlines risky product security practices along with recommended actions for software manufacturers to implement to avoid these practices.

Joint Cybersecurity Advisory: Iranian Cyber Actors Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations

Iranian Cyber Actors Brute Force

Since October 2023, Iranian actors have used brute force and password spraying to compromise user accounts and obtain access to organizations in various critical infrastructure sectors. Read advisory for recommended mitigations to implement.

October 2024 Cybersecurity Awareness Month.  Secure Our World.

Cybersecurity Awareness Month

October 2024 marks the 21st Cybersecurity Awareness Month, and the enduring theme, Secure Our World, reminds us that there are simple steps we can all take to keep our digital world secure and avoid cyber threats.

2024 General Election: Cross-Sector Checklist to Support Elections

2024 General Election: Cross-Sector Checklist to Support Elections

This checklist provides a series of questions to help critical infrastructure owners identify actions they can take to support elections.

Anonymous Threat Response Guidance. A Toolkit for K-12 Schools

Anonymous Threat Response Guidance for K-12 Schools

This toolkit and accompanying reference guide can help K-12 schools and law enforcement and community partners assess, respond to and prepare for anonymous threats of violence, including those received on social media.  

JCDC unifies cyber defenders from organizations worldwide. This diverse team proactively gathers, analyzes, and shares actionable cyber risk information to enable synchronized, holistic cybersecurity planning, cyber defense, and response.

StopRansomware.gov is the U.S. Government's official one-stop location for resources to tackle ransomware more effectively.

SAFECOM works to improve emergency communications interoperability across local, regional, tribal, state, territorial, international borders, and with federal government entities.

Additional CISA Resources

Abstract image of a PCB overlayed with cyber design elements

CISA’s Federal Cyber Defense Skilling Academy

CISA’s Federal Cyber Defense Skilling Academy provides full-time federal employees an opportunity to focus on professional growth through an intense, full-time, three-month accelerated training program.

Image of an event with speaker and participants

CISA Events

CISA hosts and participates in events throughout the year to engage stakeholders, seek research partners, and communicate with the public to help protect the homeland.

CISA Services Catalog

A single resource that provides you with access to information on services across CISA’s mission areas.

Employees pictured during training session

CISA Training

As part of our continuing mission to reduce cybersecurity and physical security risk, CISA provides a robust offering of cybersecurity and critical infrastructure training opportunities.