Jump to content

User:Jonpcoombes/sandbox

From Wikipedia, the free encyclopedia
CISA Logo

The Cybersecurity and Infrastructure Security Agency (CISA) is a standalone United States federal agency, an operational component under Department of Homeland Security (DHS) oversight[1]. Its activities are a continuation of the National Protection and Programs Directorate (NPPD). CISA was established on November 16, 2018 when President Donald Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018.[1][2] Brandon Wales served as Acting Director until Jen Easterly was unanimously confirmed by the Senate on July 12, 2021 and became Director.[3][4]

Former NPPD Under-Secretary Christopher Krebs was CISA's first Director, and former Deputy Under-Secretary Matthew Travis was its first Deputy Director.[5][6] The expected role of CISA is to improve cybersecurity across all levels of government, coordinate cybersecurity programs with U.S. states, and improve the government's cybersecurity protections against private and nation-state hackers.[1]

History

[edit]

Formed in 2007, the National Protection and Programs Directorate (NPPD) was a component of the United States Department of Homeland Security.[7] NPPD's goal was to advance the Department's national security mission by reducing and eliminating threats to U.S. critical physical and cyber infrastructure.

On November 16, 2018, President Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018, which elevated the mission of the former NPPD within DHS, establishing the Cybersecurity and Infrastructure Security Agency (CISA).[8] CISA is a successor agency to NPPD, and assists both other government agencies and private sector organizations in addressing cybersecurity issues.[9]

On January 22, 2019, CISA issued its first Emergency Directive (19-01: Mitigate DNS Infrastructure Tampering)[10] warning that "an active attacker is targeting government organizations" using DNS spoofing techniques to perform man-in-the-middle attacks.[11] Research group FireEye stated that "initial research suggests the actor or actors responsible have a nexus to Iran."[12]

In 2020, CISA created a website, titled Rumor Control, to rebut disinformation associated with the 2020 United States presidential election.[13] On November 12, 2020, CISA issued a press release asserting, "There is no evidence that any voting system deleted or lost votes, changed votes, or was in any way compromised."[14] On the same day, Director Krebs indicated that he expected to be dismissed from his post by the Trump administration.[15] Krebs was subsequently fired by President Trump on November 17, 2020 via tweet for his comments regarding the security of the election.[16] Bryan Ware, assistant director at CISA, submitted his resignation on November 12 as well, with reports that his resignation had been requested.[15][17]

After the Colonial Pipeline cybersecurity incident in May 2021, the TSA created a National Security Directive that requires the Nation’s critical pipeline owners and operators to identify and report cybersecurity incidents to CISA. The new Security Directive also requires that a Cybersecurity Coordinator be identified by each pipeline owner or operator and an internal self-assessment be completed and reported to both CISA and TSA within 30 days. The establishment of the new Security Directive reinforces the important role that CISA plays in protecting the Nation’s critical infrastructure from physical and cyber threats. [18]

In June 2021, CISA released a list of “Bad Practices” focused on organizations categorized as Critical Infrastructure or National Critical Functions (NCF). The list of high-risk practices could potentially lead to significant impacts to national security, economic security, or national public health and safety.[19]

On July 12, 2021, the Senate confirmed Jen Easterly by a Voice Vote, directly after the Senate returned from its July 4th recess.[20] Easterly’s nomination had been reported favorably out of Senate Committee on Homeland Security and Governmental Affairs on June 16, but a floor vote had been reportedly held by Senator Rick Scott over broader national security concerns, until the President or Vice President had visited the southern border with Mexico.[21]

Role

[edit]

An October, 2020 review in the Institute for World Politics student journal Active Measures stated that CISA apparently lacks an enforcement division.[22] The Federal Protective Service, which reported to, until 2010, the U.S. Immigration and Customs Enforcement, was moved in May 2019 from CISA to the DHS Management Directorate.[23]

In November 2018, DHS established the Pipeline Cybersecurity Initiative (PCI) and asked CISA to lead efforts for tackling the growing risks associated with Nation’s pipeline infrastructure.  With a concentration on pipelines that primarily transport oil and natural gas (ONG) products, CISA’s goal is to collaborate with the Nation’s pipeline owners and operators in preparing for potential cyber events.  CISA will work closely with other government agencies in the support of this new role, including the Transportation Security Agency (TSA). The primary functions of PCI is to help pipeline owners and operators assess their current cybersecurity preparedness through assessments and information sharing. [24]

CISA offers non-cost cybersecurity assessment services to organizations, including assessments that focus on best practices, operational resiliency, and capabilities that promote a sustainable and effective cybersecurity framework. The assessments are voluntary in nature and are provided to improve an organizations cybersecurity posture while helping strengthen the critical infrastructure supporting the Nation.[25] CISA collaborates across both the public and private sectors to build trusted relationships and improve public safety emergency communications capabilities.[2]

Performance

[edit]

On 17 December 2020, it was revealed that several US agencies had been hit by a massive months-long intrusion by overseas hackers suspected to be from Russia.[26]

Subcomponents

[edit]

Real Fake, a 2020 graphic novel from CISA about disinformation and misinformation campaigns

CISA subcomponents include the:[27]

See also

[edit]

References

[edit]
  1. ^ a b c Cimpanu, Catalin. "Trump signs bill that creates the Cybersecurity and Infrastructure Security Agency". ZDNet. Retrieved 2021-07-27.
  2. ^ a b "ABOUT CISA | CISA". www.cisa.gov. Retrieved 2021-07-27.
  3. ^ "CISA Gets a New Director Amidst Ongoing Ransomware Dumpster Fire". Gizmodo. Retrieved 2021-07-27.
  4. ^ "Senate confirms Jen Easterly as head of U.S. cyber agency". POLITICO. Retrieved 2021-07-27.
  5. ^ Johnson, By Derek B.; Mar 20, 2018. "NPPD taps vendor for No. 2 role -". FCW. Retrieved 2021-07-27. {{cite web}}: |first2= has numeric name (help)CS1 maint: numeric names: authors list (link)
  6. ^ "Standing up CISA".{{cite web}}: CS1 maint: url-status (link)
  7. ^ "ABOUT CISA | CISA". www.cisa.gov. Retrieved 2021-07-27.
  8. ^ "Homepage | CISA". www.cisa.gov. Retrieved 2021-07-27.
  9. ^ "Will CISA Be the Savior of State and Local Cybersecurity?". GovTech. 2020-07-24. Retrieved 2021-07-27.
  10. ^ "cyber.dhs.gov - Emergency Directive 19-01". cyber.dhs.gov. Retrieved 2021-07-27.
  11. ^ "cyber.dhs.gov - CISA blog". cyber.dhs.gov. Retrieved 2021-07-27.
  12. ^ "Global DNS Hijacking Campaign: DNS Record Manipulation at Scale". FireEye. Retrieved 2021-07-27.
  13. ^ "Bloomberg - Are you a robot?". www.bloomberg.com. Retrieved 2021-07-27. {{cite web}}: Cite uses generic title (help)
  14. ^ "Federal cybersecurity agency calls election 'most secure in American history'". Engadget. Retrieved 2021-07-27.
  15. ^ a b "Top cyber official expecting to be fired as White House frustrations hit agency protecting elections". POLITICO. Retrieved 2021-07-27.
  16. ^ CNN, Kaitlan Collins and Paul LeBlanc. "Trump fires director of Homeland Security agency who had rejected President's election conspiracy theories". CNN. Retrieved 2021-07-27. {{cite web}}: |last= has generic name (help)
  17. ^ agency, Guardian staff and (2020-11-12). "Top US cybersecurity official reportedly says he expects to be fired". the Guardian. Retrieved 2021-07-27.
  18. ^ "DHS Announces New Cybersecurity Requirements for Critical Pipeline Owners and Operators". Department of Homeland Security. 2021-05-27. Retrieved 2021-06-20.
  19. ^ "Bad Practices | CISA". www.cisa.gov. Retrieved 2021-07-05.
  20. ^ "PN420 - Nomination of Jen Easterly for Department of Homeland Security, 117th Congress (2021-2022)". www.congress.gov. 2021-06-16. Retrieved 2021-07-12.
  21. ^ Miller, Maggie (2021-06-23). "Rick Scott blocks Senate vote on top cyber nominee until Harris visits border". TheHill. Retrieved 2021-07-12.
  22. ^ Atkinson, Wade H., Jr (22 October 2020). "A Review of the Trump Administration's National Cyber Strategy: Need for Renewal and Rethinking of the Public-Private Partnership in U.S. National Security Policy". Active Measures, A Student Journal of The Institute of World Politics. The Institute of World Politics. Retrieved 16 December 2020. Presumably, the new Cybersecurity and Infrastructure Security Agency will streamline the functions of the old NPPD. However, as envisioned, it still lacks a Division of Enforcement, similar to the Divisions of Enforcement of the SEC, CFTC, or FTC to serve as an investigatory/enforcement/international-information-sharing arm to enforce the 11 cybersecurity statutes Congress passed in 2014 and 2015. Therefore, the Cybersecurity and Infrastructure Security Agency will apparently have to rely on cooperation and information-sharing, rather than administrative enforcement, and refer civil, administrative, and criminal cases to the Department of Justice (DOJ).{{cite journal}}: CS1 maint: multiple names: authors list (link)
  23. ^ Rectanus, Lori (11 June 2019). "Federal Protective Service's Organizational Placement: Considerations for Transition to the DHS Management Directorate, Statement of Lori Rectanus Director, Physical Infrastructure, Testimony Before the Subcommittee on Oversight, Management and Accountability, Committee on Homeland Security, House of Representatives" (PDF). United States: Government Accountability Office. Retrieved 16 December 2020.
  24. ^ "Pipeline Cybersecurity | CISA". www.cisa.gov. Retrieved 2021-06-20.
  25. ^ "Cyber Resource Hub | CISA". www.cisa.gov. Retrieved 2021-07-12.
  26. ^ https://www.nbcnews.com/news/us-news/department-energy-says-it-was-hacked-suspected-russian-campaign-n1251630
  27. ^ "Cybersecurity and Infrastructure Security Agency Organizational Chart".{{cite web}}: CS1 maint: url-status (link)