Content Assessment: Leaning Forward? The CISA 2023-2025 Strategic Plan
Information - 92%
Insight - 91%
Relevance - 93%
Objectivity - 90%
Authority - 94%
A short percentage-based assessment of the qualitative benefit of the recently published Cybersecurity and Infrastructure Security Agency (CISA) Strategic Plan for 2023-2025.
Editor’s Note: From time to time, ComplexDiscovery highlights publicly available or privately purchasable announcements, content updates, and research from cyber, data, and legal discovery providers, research organizations, and ComplexDiscovery community members. While ComplexDiscovery regularly highlights this information, it does not assume any responsibility for content assertions.
To submit recommendations for consideration and inclusion in ComplexDiscovery’s cyber, data, and legal discovery-centric service, product, or research announcements, contact us today.
Background Note: Established by the Cybersecurity and Infrastructure Security Agency Act of 2018, CISA serves as both America’s cyber defense agency and as the national coordinator for critical infrastructure security and resilience. This vast mission space necessitates engagements and partnerships with stakeholders worldwide as well as a strong domestic, regional presence. The threats faced — digital and physical, human-made, technological, and natural — are more complex, and the threat actors more diverse, than at any point in CISA history. CISA is at the center of mobilizing a collective defense as we lead the nation’s efforts to understand, manage, and reduce risk to critical infrastructure.
The purpose of the CISA Strategic Plan is to communicate the CISA mission and vision, promote the unity of effort across the agency and partners, and define success for CISA as an agency. The Plan describes the stakeholder, policy, and operational context in which CISA must perform and presents the strategic changes CISA will make to better execute its vital mission over the next three years. The Plan builds on and aligns with the United States Department of Homeland Security Strategic Plan for Fiscal Years 2020 – 2024. CISA will implement the Strategic Plan through the agency’s division and office-level Annual Operating Plans (AOP).
This information on CISA and the CISA Strategic plan may be beneficial for cybersecurity, information governance, and legal discovery professionals as they operate in the eDiscovery ecosystem and plan to support cyber defense and cyber discovery activities and events.
CISA Strategic Plan 2023-2025
Director Message and Complete Plan
Message from Jen Easterly, Director, Cybersecurity and Infrastructure Agency (CISA)
I am proud to share the 2023 – 2025 CISA Strategic Plan, the first comprehensive Strategic Plan since CISA was established as an Agency in 2018. The Strategic Plan represents a forward-leaning, unified approach to achieving our vision of ensuring secure and resilient critical infrastructure for the American people.
At CISA, we lead the national effort to understand, manage, and reduce risk to the cyber and physical infrastructure that Americans rely on every hour of every day. The risks we face are complex, geographically dispersed, and affect a diverse array of our stakeholders, including federal civilian government agencies, private sector companies, state, local, tribal, and territorial (SLTT) governments, and ultimately the American people. It is our duty to work with our stakeholders to mitigate these risks to preserve our national security, economic stability, and the health and safety of all our citizens.
Our Strategic Plan lays out four ambitious goals that we must achieve to address the diverse and dynamic challenges facing our nation. First, we will spearhead a national effort to ensure the defense and resilience of cyberspace. In our role as America’s cyber defense agency, we must build the national capacity to defend against, and recover from, cyberattacks. We must work with federal partners to bolster their cybersecurity and incident response postures and safeguard the federal civilian executive branch networks that support our nation’s essential operations. And we must partner with the private sector and SLTT governments to detect and mitigate cyber threats and vulnerabilities before they become incidents.
Second, we will reduce risks to, and strengthen the resilience of, America’s critical infrastructure. Our safety and security depend on the ability of critical infrastructure to prepare for and adapt to changing conditions and to withstand and recover rapidly from disruptions. We will proactively reduce risk to infrastructure and systems while also building our stakeholders’ capacity to safeguard their infrastructure from cyber and physical threats and risks. During incidents and major disasters, we stand ready to assist our stakeholders and ensure that government officials and public safety personnel can communicate quickly and efficiently.
Third, we will strengthen whole-of-nation operational collaboration and information sharing. At the heart of CISA’s mission is partnership and collaboration. Securing our nation’s cyber and physical infrastructure is a shared responsibility. We are challenging traditional ways of doing business and actively working with our government, industry, academic, and international partners to move toward more forward-leaning, action-oriented collaboration. We are also committed to growing and strengthening our agency’s regional presence to more effectively deliver the assistance our stakeholders need.
And fourth, foundational to our success, we will unify as One CISA through integrated functions, capabilities, and workforce. We will succeed because of our people. We are building a culture of excellence based on core values and core principles that prize teamwork and collaboration, innovation and inclusion, ownership and empowerment, and transparency and trust. As one team unified behind our shared mission, we will “work smart” to operate in an efficient and cost-effective manner.
There is much work to be done. CISA is at the center of a national call to action, and our world-class team is ready to deliver on our mission, working closely with a diverse group of partners across all sectors. Together, we will make essential progress to address the risks facing the nation and ensure the security and reliability of the critical services and infrastructure on which the nation depends.
CISA Strategic Plan - 20220912
- Defining Cyber Discovery? A Definition and Framework
- Cybersecurity Challenges for Artificial Intelligence: Considering the AI Lifecycle
Have a Request?
If you have information or offering requests that you would like to ask us about, please let us know and we will make our response to you a priority.
ComplexDiscovery is an online publication that highlights cyber, data, and legal discovery insight and intelligence ranging from original research to aggregated news for use by cybersecurity, information governance, and eDiscovery professionals. The highly targeted publication seeks to increase the collective understanding of readers regarding cyber, data, and legal discovery information and issues and to provide an objective resource for considering trends, technologies, and services related to electronically stored information.
ComplexDiscovery OÜ is a technology marketing firm providing strategic planning and tactical execution expertise in support of cyber, data, and legal discovery organizations. Focused primarily on supporting the ComplexDiscovery publication, the company is registered as a private limited company in the European Union country of Estonia, one of the most digitally advanced countries in the world. The company operates virtually worldwide to deliver marketing consulting and services.