"Cybersecurity Performance Goals: Sector-Specific Goals"

Now that the cross-sector Cybersecurity Performance Goals (CPGs) have been published, the US Cybersecurity and Infrastructure Security Agency (CISA) is collaborating with Sector Risk Management Agencies (SRMAs) to develop Sector-Specific Goals (SSGs) for each critical infrastructure sector. In most cases, these goals will consist of either new, unique additional goals with direct applicability to a given sector or materials to help sector constituents implement the existing cross-sector CPGs effectively. Developing SSGs will involve providing examples of recommended infrastructure and entity-specific actions. Since there are 16 critical infrastructure sectors with varying requirements, CISA will tackle this effort in phases. CISA will first work with the Energy, Financial Services, Information Technology (IT), and Chemical sectors. In addition, CISA will work with the Water/Wastewater sector, Healthcare sector, and K-12 subsector throughout the year to determine how organizations in these sectors/subsector can improve their cybersecurity posture by implementing the existing set of cross-sector goals. This article continues to discuss the cross-sector CPGs and SSGs. 

CISA reports "Cybersecurity Performance Goals: Sector-Specific Goals"