NSA News & Highlights

NSA SPOTLIGHT

May 22, 2025

NSA’s AISC Releases Joint Guidance on the Risks and Best Practices in AI Data Security

FORT MEADE, Md. – The National Security Agency’s Artificial Intelligence Security Center (AISC) is releasing the joint Cybersecurity Information Sheet (CSI), “AI Data Security: Best Practices for Securing Data Used to Train & Operate AI Systems,” to provide best practices and recommendations for the data security of AI systems.

NSA and Others Publish Advisory Warning of Russian State-sponsored Cyber Campaign Targeting Western Logistics and Technology Entities

NSA Publishes Recommendations for Smart Controller Security Controls and Technical Requirements for OT Environments

Georgia Tech Wins NSA's Codebreaker Challenge for Fourth Consecutive Year

Tag: CSI

May 27, 2025

NSA, ASD’s ACSC, and other agencies publish three Cybersecurity Information Sheets with guidance on SIEM and SOAR implementation

FORT MEADE, Md. - The National Security Agency (NSA) has joined the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and other agencies to release three publications providing guidance for cybersecurity executives and network defenders to consider when implementing Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms.

Cybersecurity Information Sheet (CSI): “AI Data Security: Best Practices for Securing Data Used to Train & Operate AI Systems

May 22, 2025

NSA’s AISC Releases Joint Guidance on the Risks and Best Practices in AI Data Security

Graphic with the NSA official seal in the corner and text saying, "NSA and others are releasing 'Closing the Software Understanding Gap' Cybersecurity Information Sheet".

Jan. 16, 2025

NSA Jointly Releases Recommendations for Closing the Software Understanding Gap

FORT MEADE, Md. – A report released by the National Security Agency (NSA), the Cybersecurity and Infrastructure Agency (CISA), the Defense Advanced Research Projects Agency (DARPA), and the Office of the Under Secretary of Defense for Research and Engineering (OUSD R&E) urges a national effort to better understand the behavior of software underpinning national security and critical infrastructure systems.

CSI: Secure by Demand: Priority Considerations for Operational Technology Owners and Operators in the Selection of Digital Products Graphic

Jan. 13, 2025

NSA and Others Publish Guidance for Secure OT Product Selection

FORT MEADE, Md. - The National Security Agency (NSA) joins the Cybersecurity and Infrastructure Security Agency (CISA) and other organizations to publish guidance helping operational technology (OT) owners and operators integrate security when selecting OT products.

Cybersecurity Information Sheet (CSI): Enhanced Visibility and Hardening Guidance for Communications Infrastructure

Dec. 3, 2024

Guidance Urges Visibility and Device Hardening against PRC-Affiliated Threat Actor

FORT MEADE, Md. – The National Security Agency (NSA) joins the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and others in releasing guidance for monitoring networks and hardening devices in response to exploitation of major global telecommunications providers by a People’s Republic of China (PRC)-affiliated threat actor.

CSI: Trusted Platform Module (TPM) Use Cases

Nov. 7, 2024

NSA Issues Guidance for using Trusted Platform Modules (TPMs)

FORT MEADE, Md. – The National Security Agency (NSA) is issuing guidance for using Trusted Platform Modules (TPMs) to secure computing devices and harden the Department of Defense (DoD) enterprise infrastructure.

CSI: Best Practices for Event Logging and Threat Detection

Aug. 21, 2024

NSA Joins Allies in Releasing Best Practices for Event Logging

FORT MEADE, Md. – To help owners and operators of NSS, DoD, and the DIB protect against malicious actors using living off the land (LOTL) techniques, the National Security Agency (NSA) is joining the Australian Signals Directorate’s Australian Cyber Security Centre (ASD ACSC) and international co-authors in releasing “Best Practices for Event Logging and Threat Detection,” a Cybersecurity Information Sheet (CSI).

CSI: Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar

July 10, 2024

NSA’s Final Zero Trust Pillar Report Outlines How to Achieve Faster Threat Response Time

FORT MEADE, Md. – The National Security Agency (NSA) is releasing the Cybersecurity Information Sheet (CSI) “Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar” to help organizations better detect cyber threats and respond to common threats faster.

Advancing Zero Trust Maturity Throughout the Network and Environment Pillar

March 5, 2024

NSA Releases Maturity Guidance for the Zero Trust Network and Environment Pillar

The National Security Agency (NSA) is releasing a Cybersecurity Information Sheet (CSI) today that details curtailing adversarial lateral movement within an organization’s network to access sensitive data and critical systems. The CSI, entitled “Advancing Zero Trust Maturity Throughout the Network and Environment Pillar,” provides guidance on how to strengthen internal network control and contain network intrusions to a segmented portion of the network using Zero Trust principles.

Phishing Guidance: Stopping the Attack Cycle at Phase One. Cybersecurity Information Sheet.

Oct. 18, 2023

How to Protect Against Evolving Phishing Attacks

The National Security Agency (NSA) and U.S. partners have released a new report describing the latest techniques in phishing attacks and the defenses organizations can deploy against them.

NSA News & Highlights

NSA SPOTLIGHT

NSA’s AISC Releases Joint Guidance on the Risks and Best Practices in AI Data Security

NSA.GOV

CULTURE

HELPFUL LINKS

RESOURCES

RELATED LINKS