A Cybersecurity Infrastructure and Security Agency (CISA) program designed to pay incentives to retain highly skilled cybersecurity professionals has spent over $138 million over the last four years – most of which hasn’t gone to the right people.  […]

As cyber threats intensify, the Cybersecurity and Infrastructure Security Agency (CISA) is pushing to modernize its defenses by overhauling compliance tools and rethinking its authority to operate (ATO) efforts, CISA Chief Information Officer (CIO) Robert (Bob) Costello said on Tuesday. […]

After narrowly avoiding a lapse in its funding earlier this year, the Common Vulnerabilities and Exposures (CVE) Program is getting an update, the Cybersecurity and Infrastructure Security Agency (CISA) announced on Wednesday.  […]

The Office of Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) will be bringing together all of the federal chief information security officers (CISOs) within the next month for a tabletop exercise focused on operational resilience. […]

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and 19 international partners released a joint guide on Sept. 3 that aims to inform the global cyber community on the value of implementing a software bill of materials (SBOM). […]

While artificial intelligence is becoming indispensable to proactive cyber defense strategies, federal cyber leaders warned on Sept. 4 that agencies must pair AI-driven detection with strong response planning and resilience measures to withstand inevitable cyberattacks.   […]

The Cybersecurity and Infrastructure Security Agency (CISA) has appointed Nicholas Andersen as its new executive assistant director for cybersecurity, tasking him with leading efforts to combat major cyber threats and strengthen the resilience of the nation’s critical infrastructure. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on Aug. 26 rolled out a new web-based tool that the agency said can help IT industry decision makers, procurement officials, and software suppliers “strengthen cybersecurity practices throughout the software procurement lifecycle.” […]

The Cybersecurity and Infrastructure Security Agency (CISA) is sharing details on what vendors can expect from its list of product categories that support post-quantum cryptography (PQC), which a CISA official said this week that the agency is on track to deliver in December. […]

Chinese state-sponsored hackers are waging a global cyber campaign against critical infrastructure, U.S. and international authorities warned today. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has sworn in Brian Bonacci as the agency’s chief of staff. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today released a draft of the first federal update to software bill of materials (SBOM) guidance since 2021, covering a new range of use cases, generation processes, and improvements to data quality.  […]

The Cybersecurity Infrastructure and Security Agency (CISA) and Sandia National Laboratories are warning that public and private sector collaborators must work to close the “software understanding” gap to better secure the nation’s systems and infrastructure.  […]

The Cybersecurity and Infrastructure Security Agency’s (CISA) new guidance, released on Aug. 13 for critical infrastructure owners and operators to improve the security of their operational technology (OT), focuses on creating and maintaining comprehensive OT asset inventories and taxonomies. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today ordered Federal government agencies to take mitigation steps to deal with a Microsoft Exchange Vulnerability that the agency warned about on Wednesday night, and to finish that work by 9 a.m. Eastern time on Monday, Aug. 11. […]

The Department of Homeland Security (DHS) said on August 1 that it is offering $103.8 million of grant funding to state, local, and tribal governments to “strengthen community cybersecurity.” […]

The Cybersecurity and Infrastructure Security Agency (CISA) released an Eviction Strategies Tool on July 30 to help cyber defenders better respond to cyber incidents. […]

The Senate Homeland Security and Governmental Affairs Committee voted today to approve the nomination of Sean Plankey to become the director of the Cybersecurity and Infrastructure Security Agency (CISA). […]

Two former Cybersecurity and Infrastructure Security Agency (CISA) officials are looking to continue their efforts on Secure by Design outside of the agency with new gigs at the Institute for Security and Technology (IST). […]

Allan Friedman, who has led the Cybersecurity and Infrastructure Security Agency’s (CISA) efforts to promote the use of software bills of material (SBOM) globally as a key component of advancing cybersecurity, is leaving the agency on July 31. […]

Sean Plankey, who is President Donald Trump’s nominee to run the Cybersecurity and Infrastructure Security Agency (CISA), pledged at his Senate nomination hearing today to focus on the agency’s primary security missions and to push for more resources from the Department of Homeland Security (DHS) and Congress if those are required. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on July 20 flagged a new warning from Microsoft on exploitation of a SharePoint vulnerability (CVE-2025-53770). […]

In its fourth attempt to get answers, Democratic lawmakers are once again pressing officials at the Cybersecurity and Infrastructure Security Agency (CISA) for explanations on how the agency is supporting state and local election offices ahead of the 2026 midterm election cycle. […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) component has appointed Casie Antalis to serve as the program director of its Joint Cyber Coordination Group, an agency spokesperson told MeriTalk. […]

The Cybersecurity and Infrastructure Security Agency (CISA) issued a warning today about possible cyberattacks on vulnerable U.S. networks and critical infrastructure coming from Iranian state actors following the June 21 bombings of Iranian nuclear facilities by the United States. […]

House Republicans pushed the Department of Homeland Security (DHS)’s fiscal year 2026 budget plan out of committee on June 24 with higher levels of funding for the agency’s cybersecurity efforts than under the budget cut proposed by President Donald Trump.   […]

The Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program has made progress in meeting some of its key goals, but a new Government Accountability Office (GAO) report says the program lacks sufficient guidance for managing network security and data protection. […]

The House Appropriations Homeland Security Subcommittee voted on Monday to approve a 4.6 percent year-over-year budget cut for the Cybersecurity and Infrastructure Security Agency (CISA) for fiscal year 2026 – versus the 16 percent budget reduction that the Trump administration has been offering in its budget request to Congress last month.   […]

Bridget Bean is stepping down as executive director of the Cybersecurity and Infrastructure Security Agency (CISA) and retiring from Federal government service, a spokesperson for the agency told MeriTalk today. […]

Rep. Andrew Garbarino, R-N.Y., who chairs the House Homeland Security Committee’s Cybersecurity and Infrastructure Protection subcommittee, is pressing Homeland Security Secretary Kristi Noem about updating cybersecurity planning for the U.S. communications sector, and on maintaining an existing program that helps to evaluate the security of mobile apps that have ties to adversarial nations. […]