CISA Seeks Extra Email Protection
The United States’ Cybersecurity and Infrastructure Security Agency (CISA) is exploring a protective email service (PES) that can be used to make Federal Civilian Executive Branch (FCEB) email safer.
In October 2017, the Department of Homeland Security took action against the spoofing of domains and organizations by mandating DMARC or domain-based message authentication, reporting and conformance standards by all federal agencies in its Binding Operational Directive 18-01.
Now, CISA is asking the cybersecurity industry for feedback on ways to bolster protective email services through threat hunting and incident response.
Through independent agency the General Services Administration, CISA has released a request for information (RFI) to discover the protective email service capabilities among vendors.
“One of CISA’s key missions is to protect federal networks and protect the Federal Civilian Executive Branch (FCEB) .gov domain enterprise from threats while strengthening cyber-defenses. To that end, CISA is exploring a Protective Email Service (PES) to execute its mission to protect FCEB email traffic and to conduct threat hunting and incident response,” states CISA in its RFI.
The objectives of the PES include detecting and preventing federal enterprise email from being used as a vector for malicious threat actors against itself