(TLP:CLEAR) CISA Releases Cybersecurity Performance Goals 2.0 for Critical Infrastructure

Summary: Last week,CISA released Cybersecurity Performance Goals 2.0 (CPG 2.0), updating its original set of CPGs. The CPGs are high-impact security actions that outline the highest-priority baseline that businesses and critical infrastructure owners of all sizes can take to protect themselves from cyber threats. These measurable actions are specifically designed for critical infrastructure owners and operators to achieve a foundational level of cybersecurity.

Analyst Note: WaterISAC always encourages members to implement the CPGs into their security initiatives, and like the WaterISAC 12 Cybersecurity Fundamentals for Water and Wastewater Utilities, the CPGs are a clear, uniform set of security expectations that make it easier for utilities to prioritize and effectively manage cybersecurity at their utility. Additionally, the original CPGs have been mapped to WaterISAC’s 12 Fundamentals, and an effort to map this updated set of CPGs to the 12 Fundamentals may be forthcoming.

Original Source: https://www.cisa.gov/news-events/news/cisa-unveils-enhanced-cross-sector-cybersecurity-performance-goals

Related WaterISAC PIRs: 12