The Cybersecurity and Infrastructure Security Agency's logo is seen at CISA headquarters in Arlington, Va., on June 11, 2025. This story was originally published on Cybersecurity Dive. To receive ...

The US Cybersecurity and Infrastructure Security Agency (CISA) has released the Ransomware Readiness Assessment (RRA), a new module for its Cyber Security Evaluation Tool (CSET). RRA is a security ...

Domain 3: Information Systems Acquisition, Development and Implementation (12 percent) Domain 4: Information Systems Operations and Business Resilience (26 percent) Domain 5: Protection of Information ...

Microsoft last week announced that it is expanding some baseline security aspects for its cloud-based services in response to "nation-state cyberthreats" as part of a communication with the U.S.

Cyberattacks targeting critical infrastructure and essential services are on the rise. In response, the Cybersecurity and Infrastructure Security Agency (CISA), under the Cyber Incident Reporting for ...

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have published updated guidance about how to harden Kubernetes for managing container applications.

The US Cybersecurity and Infrastructure Security Agency (CISA) has detailed how, during a cybersecurity red team assessment, it was able to gain access to the network a large critical infrastructure ...

The Government Accountability Office says CISA should also update its approach to communications sector reliability by securing the supply chain for information and communications technology. Cyber ...

While the U.S. government does not have the authorities or capabilities to prevent cyberattacks in private industry, it does have a critical role in coordinating among stakeholders and setting basic ...

Robert B. Brenis, CGEIT, CISA, MCP, PMP, a principal with Skoda Minotti, discusses SAS 70 audits (statement of auditing standards No. 70), what they are and what your company needs to do about them.