CISA Publishes Update to the Infrastructure Resilience Planning Framework

The Cybersecurity and Infrastructure Security Agency (CISA) released an updated Infrastructure Resilience Planning Framework (IRPF) today to better help state, local, tribal, and territorial (SLTT) planners manage risk to critical infrastructure systems and enhance their resilience. First released in 2021, today’s update to the IRPF adds important new resources and tools to better support partners…
Read More

CISA, NSA, ODNI Announce New ESF Guidance for Software Customers  

The Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI) partnered with industry and government experts under the Enduring Security Framework (ESF) to release “Securing the Software Supply Chain Recommended Practices Guide for Customers” and an accompanying fact sheet. In an effort to…
Read More

CISA, FBI and HHS Cyber Advisory – #StopRansomware: Hive Ransomware

The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of the Health and Human Services (HHS) released a joint Cybersecurity Advisory (CSA) with technical details associated with Hive ransomware variants identified through FBI investigations as recently as November 2022. From June 2021 through at least November 2022, threat…
Read More

CISA and FBI Release Advisory on Iranian Government-Sponsored APT Actors Compromise Federal Network

The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) published a joint Cybersecurity Advisory (CSA) about suspected Iranian government-sponsored actors that compromised a federal civilian executive branch (FCEB) agency. The advisory, “Iranian Government-Sponsored APT Actors Compromise Federal Network, Deploy Crypto Miner, Credential Harvester” provides information on their tactics, techniques, and procedures…
Read More

DHS/CISA Mass Gathering Security Planning Tool Available

The Cybersecurity and Infrastructure Security Agency (CISA) recently released a new tool titled; Mass Gathering Security Planning Tool that I wanted to share with you. This tool will provide event planners with a framework to begin or continue planning efforts for a mass gathering or special event, as well as key resources that will point…
Read More

DHS Virtual Instructor Led Training (VILT) Awareness Courses

The Office for Bombing Prevention (OBP) leads the Department of Homeland Security’s (DHS) efforts to implement the National Policy for Countering Improvised Explosive Devices (PDF) (National Counter-IED policy) and enhance the nation’s ability to prevent, protect against, respond to, and mitigate the use of explosives against critical infrastructure; the private sector; and federal, state, local, tribal, and territorial…
Read More

CISA Adds Seven Known Exploited Vulnerabilities to Catalog

CISA Adds Seven Known Exploited Vulnerabilities to Catalog 11/08/2022 10:57 AM EST Original release date: November 8, 2022 CISA has added seven vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.…
Read More

Cyber Training Bulletin  –  November and December

Cyber Training Bulletin  –  November and December   CSD Cyber Defense Education and Training (CDET) Offerings Highlights: What You Want to Know CISA will host the 200th Industrial Control Systems Cybersecurity (301L) course on November 7th! This is a four-day, instructor-led, hands-on lab that is taught at a training facility in Idaho Falls, Idaho, USA.…
Read More

What/Who is Cisa?

On November 16, 2018, President Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018, which elevated the mission of the former NPPD within the Department of Homeland Security (DHS), establishing the Cybersecurity and Infrastructure Security Agency (CISA).  CISA is a successor agency to NPPD and assists both other government agencies and private sector organizations in addressing infrastructure and cybersecurity issues.

IRPT works closely with CISA to inform the inland river industry of available training courses offered by CISA, current potential threats to infrastructure and/or cyber that could adversely impact industry, and free services CISA provides that are available to industry.

CISA subcomponents include the:

 

Regional/District Contacts: