CISA’s CSET Now Includes Module for Assessing Ransomware Readiness

The Cybersecurity and Infrastructure Security Agency (CISA) has announced the addition of a new module to its Cyber Security Evaluation Tool (CSET) intended to help organizations address the threat of ransomware. Like the overall CSET, the new module – the Ransomware Readiness Assessment (RRA) – is a self-assessment for organizations to determine their cybersecurity practices on their networks, in this case how well equipped they are to defend and recover from a ransomware incident. CSET is applicable to both IT and OT networks, and correspondingly the RRA guides asset owners and operators through a systematic process of evaluating either or both types of networks for security practices against the ransomware threat. Once completed, the RRA provides users with an analysis dashboard of graphs and tables that present the assessment results in both summary and detailed form. CISA strongly encourages all organizations to take the RRA, which is a timely addition to CSET given the heightened level of ransomware activity happening at this time. Read more and access the RRA at CISA.