The Cybersecurity and Infrastructure Security Agency (CISA) said the initial launch of six Cyber Essentials Toolkits provides small businesses and government agencies with a foundational means of addressing cybersecurity risks.
“We thank all of our partners in government and the private sector who played an essential role in the development of CISA’s Cyber Essentials Toolkit,” CISA Director Christopher Krebs said. “We hope this toolkit, and the ones we are developing, fills gaps and provides executives the tools they need to raise the cybersecurity baseline of their teams and the organizations they lead.”
Agency officials said the toolkits provide greater detail, insight, and resources on each of the six Essential Elements of a Culture of Cyber Readiness. Toolkit 1 focuses on the role of leadership in forging a culture of cyber readiness in organizations, with an emphasis on strategy and investment.
Cyber Essentials targets efforts to equip smaller organizations that have historically not been included in the national dialogue on cybersecurity with basic steps and resources to improve their cybersecurity. Cyber Essentials involves guiding principles for leaders to develop a culture of security and specific actions for leaders and their IT professionals to put that culture into action.
According to CISA, the Cyber Essentials are designed to, among other actions, drive cybersecurity strategy, investment, and culture; develop a heightened level of security awareness and vigilance; protect critical assets and applications; ensure only those who belong on your digital workplace have access; make backups and avoid loss of info critical to operations; and limit damage and restore normal operations quickly.