On November 16, 2021, The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) published the Cybersecurity Incident & Vulnerability Response Playbooks: Operational Procedures for Planning and Conducting Cybersecurity Incident and Vulnerability Response Activities in FCEB Information Systems.
The new guidance is created to help Federal Civilian Executive Branch (FCEB) Information Systems agencies in adopting a standard set of incident and vulnerability response procedures. The playbooks are intended to minimize threats across the federal government, private, and public areas.
These playbooks provide FCEB agencies with a standard set of procedures to identify, coordinate, remediate, recover, and track successful mitigations from incidents and vulnerabilities affecting FCEB systems, data, and networks.
In addition, future iterations of these playbooks may be useful for organizations outside of the FCEB to standardize incident response practices.
The release of the two playbooks set the wheels in motion by President Biden’s Executive Order 14028, “Improving the Nation’s Cybersecurity,” signed on May 12th to streamline the federal government’s cybersecurity defenses against cybercrime.
Biden’s executive order came after a slew of attacks against US public and private sector entities in the previous year, including the SolarWinds supply chain attacks from December.
The purpose of