NSA News & Highlights

Results:
Tag: CSI

NSA joins CISA, FBI, and DC3 in releasing, "Iranian Cyber Actors May Target Vulnerable U.S. Networks and Entities of Interest", a cybersecurity information sheet.

June 30, 2025

NSA, CISA, FBI, and DC3 Warn Iranian Cyber Actors May Target Vulnerable U.S. Networks and Entities of Interest

FORT MEADE, Md. - The National Security Agency, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigations (FBI), and the Department of Defense Cyber Crime Center (DC3) have released the joint Cybersecurity Information Sheet (CSI), “Iranian Cyber Actors May Target Vulnerable U.S. Networks and Entities of Interest.”

Memory Safe Languages: Reducing Vulnerabilities in Modern Software Development

June 24, 2025

NSA and CISA Release CSI Highlighting Importance of Memory Safe Languages in Software Security

FORT MEADE, Md. - The National Security Agency and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint Cybersecurity Information Sheet (CSI) to highlight the importance of adopting memory safe languages (MSLs) in improving software security and reducing the risk of security incidents.

Implementing SIEM and SOAR Platforms

May 27, 2025

NSA, ASD’s ACSC, and other agencies publish three Cybersecurity Information Sheets with guidance on SIEM and SOAR implementation

FORT MEADE, Md. - The National Security Agency (NSA) has joined the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and other agencies to release three publications providing guidance for cybersecurity executives and network defenders to consider when implementing Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms.

Cybersecurity Information Sheet (CSI): “AI Data Security: Best Practices for Securing Data Used to Train & Operate AI Systems

May 22, 2025

NSA’s AISC Releases Joint Guidance on the Risks and Best Practices in AI Data Security

FORT MEADE, Md. – The National Security Agency’s Artificial Intelligence Security Center (AISC) is releasing the joint Cybersecurity Information Sheet (CSI), “AI Data Security: Best Practices for Securing Data Used to Train & Operate AI Systems,” to provide best practices and recommendations for the data security of AI systems.

Graphic with the NSA official seal in the corner and text saying, "NSA and others are releasing 'Closing the Software Understanding Gap' Cybersecurity Information Sheet".

Jan. 16, 2025

NSA Jointly Releases Recommendations for Closing the Software Understanding Gap

FORT MEADE, Md. – A report released by the National Security Agency (NSA), the Cybersecurity and Infrastructure Agency (CISA), the Defense Advanced Research Projects Agency (DARPA), and the Office of the Under Secretary of Defense for Research and Engineering (OUSD R&E) urges a national effort to better understand the behavior of software underpinning national security and critical infrastructure systems.

CSI: Secure by Demand: Priority Considerations for Operational Technology Owners and Operators in the Selection of Digital Products Graphic

Jan. 13, 2025

NSA and Others Publish Guidance for Secure OT Product Selection

FORT MEADE, Md. - The National Security Agency (NSA) joins the Cybersecurity and Infrastructure Security Agency (CISA) and other organizations to publish guidance helping operational technology (OT) owners and operators integrate security when selecting OT products.
 

Cybersecurity Information Sheet (CSI): Enhanced Visibility and Hardening Guidance for Communications Infrastructure

Dec. 3, 2024

Guidance Urges Visibility and Device Hardening against PRC-Affiliated Threat Actor

FORT MEADE, Md. – The National Security Agency (NSA) joins the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and others in releasing guidance for monitoring networks and hardening devices in response to exploitation of major global telecommunications providers by a People’s Republic of China (PRC)-affiliated threat actor.

CSI: Trusted Platform Module (TPM) Use Cases

Nov. 7, 2024

NSA Issues Guidance for using Trusted Platform Modules (TPMs)

FORT MEADE, Md. – The National Security Agency (NSA) is issuing guidance for using Trusted Platform Modules (TPMs) to secure computing devices and harden the Department of Defense (DoD) enterprise infrastructure.
 

CSI: Best Practices for Event Logging and Threat Detection

Aug. 21, 2024

NSA Joins Allies in Releasing Best Practices for Event Logging

FORT MEADE, Md. – To help owners and operators of NSS, DoD, and the DIB protect against malicious actors using living off the land (LOTL) techniques, the National Security Agency (NSA) is joining the Australian Signals Directorate’s Australian Cyber Security Centre (ASD ACSC) and international co-authors in releasing “Best Practices for Event Logging and Threat Detection,” a Cybersecurity Information Sheet (CSI).

CSI: Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar

July 10, 2024

NSA’s Final Zero Trust Pillar Report Outlines How to Achieve Faster Threat Response Time

FORT MEADE, Md. – The National Security Agency (NSA) is releasing the Cybersecurity Information Sheet (CSI) “Advancing Zero Trust Maturity Throughout the Automation and Orchestration Pillar” to help organizations better detect cyber threats and respond to common threats faster.