CISA Launches New Catalog of Free Public and Private Sector Cybersecurity Services

By Aimee Andres | February 21, 2022

CISA Launches New Catalog of Free Public and Private Sector Cybersecurity Services

The Cybersecurity and Infrastructure Security Agency (CISA) announced today that it has compiled and published a list of free cybersecurity services and tools to help organizations reduce cybersecurity risk and strengthen resiliency. This non-exhaustive living repository includes services provided by CISA, widely used open source tools, and free tools and services offered by private and public sector organizations across the cybersecurity community.

CISA also strongly recommends organizations take the following foundational measures:

  1. Fix known security flaws in software.
  2. Implement multifactor authentication.
  3. Take steps to halt bad practices, including the use of end-of-life software products and systems that rely on known/default/unchangeable passwords.
  4. Sign up for CISA’s Cyber Hygiene Vulnerability Scanning service.
  5. Get your Stuff Off Search (S.O.S.).

CISA encourages network defenders to take the steps above and consult the list of free cybersecurity services and tools to reduce the likelihood of a damaging cyber incident, detect malicious activity, respond to confirmed incidents, and strengthen resilience.

As a reminder, CISA encourages all organizations to review our new Shields Up webpage to find recommended actions on protecting their most critical assets.

CISA Recommendations:

  • Take foundational measures to implement a strong cybersecurity program. These include: fixing the known security flaws in software, implementing multifactor authentication (MFA), halting bad practices, signing up for CISA’s Cyber Hygiene Vulnerability Scanning service by emailing vulnerability@cisa.dhs.gov, and getting your Stuff Off Search (S.O.S).
  • After making progress on the measures above, organizations can use the free services and tools in the repository to mature their cybersecurity risk management.

 

Curtesy of:

Steve Lyddon
Protective Security Advisor, Region 5, Illinois
Cybersecurity and Infrastructure Security Agency
U.S. Department of Homeland Security
Cell:  217-299-3954 | steven.lyddon@cisa.dhs.gov

Chad Johnston
Protective Security Advisor-Arkansas, Region VI
Cybersecurity and Infrastructure Security Agency
501-414-1468 (Cell)
Chad.Johnston@cisa.dhs.gov

Posted in CISA/DHS News