CISA Issues Cybersecurity Incident and Vulnerability Response Playbooks

On Nov. 16, the Cybersecurity and Infrastructure Security Agency (CISA) published a “Playbook” to be used in planning and conducting cybersecurity vulnerability and incident response activity. The “Playbook” underscores the importance of having plans to coordinate the response to cyber incidents in anticipation of future cyberattacks and was created in response to The White House’s Executive Order (EO) 14028: Improving the Nation’s Cybersecurity, which charged CISA, as the operational lead for federal cybersecurity, to develop a standard set of operating procedures for federal agencies’ information systems.

The Federal Government Cybersecurity Incident and Vulnerability Response Playbooks give federal civilian executive branch (FCEB) agencies operating procedures for planning to respond to cybersecurity incidents and vulnerabilities. The playbooks provide illustrated decision trees and detail each step for both incident and vulnerability response.  Although the playbooks apply to FCEB agencies, agency contractors, or another organization on behalf of the agency, all organizations, public or private, are encouraged to review and use the playbooks as a guide to craft their specific approach to vulnerability and incident response plans, practices, and procedures.

For more information, contact Mariah Leffingwell mleffingwell@clarkhill.com or Jeffrey Wells jwells@clarkhill.com.