Protecting Tokens and Assertions from Forgery, Theft, and Misuse banner image

NIST AND CISA RELEASE DRAFT INTERAGENCY REPORT ON PROTECTING TOKENS AND ASSERTIONS FOR PUBLIC COMMENT

This initial draft on protecting tokens and assertions is open for public comment until January 30, 2026, and includes implementation recommendations for agencies and cloud service providers.

Read Report
Build Skills this Summer! 2026 Summer Internships Hands-On Experience Real Impact. In-Person.CyberCorps®: Scholarship for Service (SFS). Full-Time: 10-12 weeks (potential extension possible). In-Person: Arlington, VA or Regional office. Paid Internships: based on college credit, degree level, or experience. Hands-On: work integrated with teams. Opportunities: Threat Hunting, Penetration Testing, OCIO, etc. Apply Early: limited slots.CyberCorps® Defending America's Cyberspace.

CyberCorps®: Scholarship for Service

CISA is offering 100 new summer SFS cybersecurity internship roles—a bold investment in the future of cyber defense. Join CISA’s cyber mission. protect the nation. Secure your future.

Learn More
Cybersecurity Performance Goals 2.0

Cybersecurity Performance Goals 2.0

New goals help organizations establish effective governance and respond to emerging threats.

Read the Alert
Joint Cybersecurity Advisory: Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure

Joint Cybersecurity Advisory

CISA, FBI, NSA and other partners release cybersecurity advisory on pro-Russia hacktivist attacks on US and global critical infrastructure.  

Read More on this Advisory
269_DHS_JCDC_BRICKSTORM-Backdoor-MAR_Corousel_V3.jpg

BRICKSTORM MALWARE THREATENING GOVERNMENT AND CRITICAL INFRASTRUCTURE

Read our joint report and operational alert for key actions and mitigations to detect and protect against ongoing intrusions by People’s Republic of China state-sponsored actors who are deploying BRICKSTORM. 

READ ALERT
Holiday Shopping

#SecureTheSeason Holiday Online Shopping Safety

The holiday season is here, make sure to #SecureTheSeason as you shop! Follow these tips to safeguard your online accounts. 

Read More

News Updates

View More News

Latest Operational Information

View All Alerts & Advisories Subscribe to Updates

How can we help?

All Audiences
Main St, street sign

Find Help Locally

Contact your Region

Assist Visits

Protected Critical Infrastructure Information

IT professional working at computers

Industry

Secure by Design

Information Sharing: A Vital Resource

PCII Program modernized

Joint Cyber Defense Collaborative expands

A small business worker making a transaction with a customer

Small and Medium Businesses

Cyber guidance for small businesses

Supplementing passwords

Doing business with CISA

Teenager boy and classmates in high school computer class

Educational Institutions

School Safety

Cybersecurity for K-12

K-12 School Security Product Suite

Protecting Our Future: Partnering to Safeguard K-12 Organizations from Cybersecurity Threats

All Audiences

JCDC unifies cyber defenders from organizations worldwide. This team proactively gathers, analyzes, and shares actionable cyber risk information to enable synchronized, holistic cybersecurity planning, cyber defense, and response.

JCDC

StopRansomware.gov is the U.S. Government's official one-stop location for resources to tackle ransomware more effectively.

STOPRANSOMWARE

SAFECOM works to improve emergency communications interoperability across local, regional, tribal, state, territorial, international borders, and with federal government entities.

SAFECOM

Additional CISA Resources

Abstract image of a PCB overlayed with cyber design elements

CISA’s Federal Cyber Defense Skilling Academy

CISA’s Federal Cyber Defense Skilling Academy provides full-time federal employees an opportunity to focus on professional growth through an intense, full-time, three-month accelerated training program.

Image of an event with speaker and participants

CISA Events

CISA hosts and participates in events throughout the year to engage stakeholders, seek research partners, and communicate with the public to help protect the homeland.

CISA Services Catalog

A single resource that provides you with access to information on services across CISA’s mission areas.

Employees pictured during training session

CISA Training

As part of our continuing mission to reduce cybersecurity and physical security risk, CISA provides a robust offering of cybersecurity and critical infrastructure training opportunities.