NSA News & Highlights

Results:
Tag: CSI

May 27, 2025

NSA, ASD’s ACSC, and other agencies publish three Cybersecurity Information Sheets with guidance on SIEM and SOAR implementation

FORT MEADE, Md. - The National Security Agency (NSA) has joined the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and other agencies to release three publications providing guidance for cybersecurity executives and network defenders to consider when implementing Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms.

May 22, 2025

NSA’s AISC Releases Joint Guidance on the Risks and Best Practices in AI Data Security

FORT MEADE, Md. – The National Security Agency’s Artificial Intelligence Security Center (AISC) is releasing the joint Cybersecurity Information Sheet (CSI), “AI Data Security: Best Practices for Securing Data Used to Train & Operate AI Systems,” to provide best practices and recommendations for the data security of AI systems.

Jan. 16, 2025

NSA Jointly Releases Recommendations for Closing the Software Understanding Gap

FORT MEADE, Md. – A report released by the National Security Agency (NSA), the Cybersecurity and Infrastructure Agency (CISA), the Defense Advanced Research Projects Agency (DARPA), and the Office of the Under Secretary of Defense for Research and Engineering (OUSD R&E) urges a national effort to better understand the behavior of software underpinning national security and critical infrastructure systems.

Jan. 13, 2025

NSA and Others Publish Guidance for Secure OT Product Selection

FORT MEADE, Md. - The National Security Agency (NSA) joins the Cybersecurity and Infrastructure Security Agency (CISA) and other organizations to publish guidance helping operational technology (OT) owners and operators integrate security when selecting OT products.
 

Dec. 3, 2024

Guidance Urges Visibility and Device Hardening against PRC-Affiliated Threat Actor

FORT MEADE, Md. – The National Security Agency (NSA) joins the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and others in releasing guidance for monitoring networks and hardening devices in response to exploitation of major global telecommunications providers by a People’s Republic of China (PRC)-affiliated threat actor.

Nov. 7, 2024

NSA Issues Guidance for using Trusted Platform Modules (TPMs)

FORT MEADE, Md. – The National Security Agency (NSA) is issuing guidance for using Trusted Platform Modules (TPMs) to secure computing devices and harden the Department of Defense (DoD) enterprise infrastructure.
 

Aug. 21, 2024

NSA Joins Allies in Releasing Best Practices for Event Logging

FORT MEADE, Md. – To help owners and operators of NSS, DoD, and the DIB protect against malicious actors using living off the land (LOTL) techniques, the National Security Agency (NSA) is joining the Australian Signals Directorate’s Australian Cyber Security Centre (ASD ACSC) and international co-authors in releasing “Best Practices for Event Logging and Threat Detection,” a Cybersecurity Information Sheet (CSI).

July 10, 2024

NSA’s Final Zero Trust Pillar Report Outlines How to Achieve Faster Threat Response Time

FORT MEADE, Md. – The National Security Agency (NSA) is releasing the Cybersecurity Information Sheet (CSI) “Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar” to help organizations better detect cyber threats and respond to common threats faster.

March 5, 2024

NSA Releases Maturity Guidance for the Zero Trust Network and Environment Pillar

The National Security Agency (NSA) is releasing a Cybersecurity Information Sheet (CSI) today that details curtailing adversarial lateral movement within an organization’s network to access sensitive data and critical systems. The CSI, entitled “Advancing Zero Trust Maturity Throughout the Network and Environment Pillar,” provides guidance on how to strengthen internal network control and contain network intrusions to a segmented portion of the network using Zero Trust principles.

Oct. 18, 2023

How to Protect Against Evolving Phishing Attacks

The National Security Agency (NSA) and U.S. partners have released a new report describing the latest techniques in phishing attacks and the defenses organizations can deploy against them.