"DHS Announces New Cybersecurity Performance Goals for Critical Infrastructure"

The US Department of Homeland Security (DHS) has released the Cybersecurity Performance Goals (CPGs), which are voluntary practices outlining the highest-priority baseline measures that businesses and critical infrastructure owners of all sizes can take to protect themselves from cyber threats. The CPGs were created at the direction of the White House by DHS's Cybersecurity and Infrastructure Security Agency (CISA). CISA has spent the last year working with hundreds of public and private sector partners, and analyzing years of data to identify the key challenges that put the US at risk. The CPGs were designed to be applicable to organizations of all sizes by clearly outlining measurable goals based on easily understandable criteria such as cost, complexity, and impact. CISA formed the CPGs in collaboration with the National Institute of Standards and Technology (NIST). The resulting CPGs are meant to be used in conjunction with the NIST Cybersecurity Framework. The NIST Cybersecurity Framework should be used by every organization to create a rigorous, all-encompassing cybersecurity program. The CPGs prescribe a condensed subset of actions for the NIST Cybersecurity Framework, presenting a sort of "QuickStart guide" to assist organizations in prioritizing their security investments. This article continues to discuss the purpose and development of the CPGs released by DHS. 

HSToday reports "DHS Announces New Cybersecurity Performance Goals for Critical Infrastructure"