January 26, 2022

Volume XII, Number 26

Advertisement
Advertisement

January 26, 2022

Subscribe to Latest Legal News and Analysis

January 25, 2022

Subscribe to Latest Legal News and Analysis

January 24, 2022

Subscribe to Latest Legal News and Analysis
Advertisement

CISA Issues Incident Response + Vulnerability Response Playbooks For Executive Branch

The Cybersecurity & Infrastructure Security Agency (CISA) issued the Cybersecurity Incident & Vulnerability Response Playbooks: Operational Procedures for Planning and Conducting Cybersecurity Incident and Vulnerability Response Activities in FCEB Information Systems (Playbooks) on November 16, 2021, which are designed to assist Federal Civilian Executive Branch (FCEB) Information Systems agencies to adopt a standard set of procedures related to incident and vulnerability responses.

The two playbooks, which are designed for federal systems but admittedly “may be useful for organizations outside of the FCEB to standardize incident response practices,” provide “FCEB agencies with a standard set of procedures to identify, coordinate, remediate, recover, and track successful mitigations from incidents and vulnerabilities affecting FCEB systems, data, and networks.”

The processes outlined in the Playbooks:

  • Facilitate better coordination and effective response among affected  organizations;

  • Enable tracking of cross-organizational successful actions;

  • Allow for cataloging of incidents to better manage future events; and

  • Guide analysis and discovery.

According to CISA, the playbooks “apply to all FCEB agencies, information systems used or operated by an agency, a contractor of an agency, or another organization on behalf of an agency.”

Although the playbooks are designed for FCEB agencies, organizations may wish to review the playbooks to get ideas of a framework for their own organizations if incident response and vulnerability playbooks have not been developed and implemented.

Copyright © 2022 Robinson & Cole LLP. All rights reserved.National Law Review, Volume XI, Number 321
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement

About this Author

Linn F. Freedman, Robinson Cole Law Firm, Cybersecurity and Litigation Law Attorney, Providence
Partner

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She provides guidance on data privacy and cybersecurity compliance to a full range of public and private clients across all industries, such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine, and charitable organizations. Linn is a member of the firm's Business Litigation Group and chairs its Data Privacy + Cybersecurity Team. She is also a member of the Financial Services Cyber-Compliance Team (CyFi ...

401-709-3353
Advertisement
Advertisement
Advertisement