• Skip to primary navigation
  • Skip to main content
  • Skip to footer
The Evolution of ESG RegulationThe Evolution of ESG RegulationThe Evolution of ESG Regulation

CUBE global

  • Products
        • RegPlatform product overviewOur enterprise product, providing regulatory intelligence for large, global financial institutions looking to tackle complex compliance.
        • RegAssure product overviewOur highly intuitive, seamless compliance product, that grows with your small or medium sized business.
        • CUBE's technology
  • Solutions
        • PrivacyGlobal governance for data privacy regulations, the world over
        • RecordsHolistic oversight of ever-growing regulations for records
        • CybersecurityAutomated workflows for up to date, relevant data on cyber
        • Technology riskEffective policies and controls to mitigate technology risk
        • Financial crime and AMLWatertight audit trails to show risk-based rationale
        • View all solutions
  • Resources
        • Resource hubLifting the lid on financial services, compliance, and regulation
        • Read

        • Case Studies
        • Blog posts
        • Reports
        • RegNews
        • Brochures
        • Find

        • Compliance Corner
        • Compliance Confessions
        • ESG Conference
        • CUBE’s regulation game
        • Listen

        • Videos
        • Webinars
        • Podcasts
  • Partners
        • Advisory and consulting partnersEnhance your regulatory compliance offering with the entire suite of CUBE regulatory data.
        • Integration partnersCompliance is complex enough without over-complicated integration procedures.
        • Technology partnersAdd value to existing customer applications with a unified window into regulatory intelligence.
        • Partners overview
  • About us
        • About usThe story of who we are, how we got here and why we’re exceptionally proud of what we do
        • TeamThe visionaries and leaders powering CUBE’s success
        • NewsThe latest news from CUBE
        • CareersOur movement to transform regulatory data into regulatory intelligence
        • ContactWant to know more? Get in touch
  • Request a demo
Customer login
Home » Resources » What is the US Cybersecurity and Infrastructure Security Agency?

Estimated reading time: 2 minutes

What is the US Cybersecurity and Infrastructure Security Agency (CISA)?

The Cybersecurity and Infrastructure Security Agency (CISA) is a US-based national risk advisor built to combat digital threats and increase vulnerability resilience.

CISA is a Federal agency and is the leading regulatory body for providing the frameworks to protect against online security challenges. The institution collaborates with private security firms, state governments, researchers, and law enforcement in order to protect its national security from cyber threats.

History of CISA

CISA exists to strengthen the backbone of cybersecurity in the USA. With the introduction of the internet in 1983, tech has grown at an unimaginable pace in order to adapt and develop with the real world around it. As such, digital threats are fast moving, having become more versatile and have the potential to sting harder.

In particular, there was a huge ransomware attack in 2015, revealing the information of over 22 million Federal employees. This revealed the true potential impact of cybersecurity threats that previously may not have been taken as seriously. The agency was formed in 2018 in response to growing threats and aims to prevent future hacking attempts. 

Features of CISA

CISA has two primary cybersecurity performance goals: threat prevention and cybersecurity response.

Threat prevention

After the fallout of 2015, CISA works to forecast emerging technologies that may be used to infiltrate sensitive data sources. Moreover, the agency actively creates extraneous cyber defence capabilities in order to protect against threats and more generally-developed scientific functions.

The other way in which CISA works to prevent threats is by managing risk through regulation. Therefore, financial institutions are subject to specific operational conditions, with compliance extending to other public safety industries, such as law enforcement agencies.

Cybersecurity response

CISA was also created in order to generate responses to cybersecurity (malware) infiltration in both a strong and an urgent manner. The organisation offers cyber situational awareness training for the institutions that it aims to protect. 

Furthermore, CISA provides incident response services. The purpose of this feature is to minimise the effects of infiltration as well as sharing intelligence, especially since the information captured can be incredibly valuable. 

Who must comply?

Financial institutions are considered ‘critical infrastructure organizations’, and are essential to CISA’s duties. Information sharing is mandatory across the industry, with the Automated Indicator Sharing (AIS) program instantly alerting authorities in case of penetration against cybersecurity measures. Institutions are also, therefore, required to disclose cyberattacks to their customers and the public.

It is important to note that CISA guidance is not mandatory for non-federal entities, however, it is highly encouraged. In a business sense, being afforded the privilege of access to the top techniques against cybersecurity is hardly undesirable.


Speak to the team

Related resources
View all articles
A man in a suit leaning on a large percentage sign.
Compliance Corner

What is STIFC?

Lightbulbs overlap to represent RegTech findings
Compliance Corner

Fintech vs Regtech: what is the difference?

Image shows a hand at a cash machine, typing in their pin.
Compliance Corner

What is the Bank Secrecy Act?

Learn all about global cybersecurity regulations
Compliance Corner

What global cyber and cybersecurity regulations are there?


Want CUBE updates and latest industry news sent straight to your inbox?

Footer

Add CUBE logo here

  • Products
    • Partners
    • Solutions
  • Resource hub
    • Blogs
    • Reports
    • Brochures
    • Compliance Corner
    • Webinars
    • Podcasts
    • Videos
  • Behind CUBE
    • About us
    • Meet the team
    • Careers
    • News
    • Contact us
  • The legal bits
    • Privacy policy
    • Cookie policy
    • Terms of use
    • Accessibility
Follow us:
  • LinkedIn
  • Twitter
  • YouTube

© 2023 CUBE Content Governance Global Limited

  • English
  • US

envelope

Want CUBE updates and latest industry news sent straight to your inbox?

Sign up to our Newsletter here