CISA developed the Cyber Security Evaluation Tool (CSET) using industry-recognized standards, frameworks, and recommendations to assist organizations in evaluating their enterprise and asset cybersecurity posture. CSET asks detailed questions about organizations’ system components, architectures, and operational policies and procedures. CSET uses provided answers to generate a report highlighting strengths and weaknesses and offering prioritized recommendations for optimizing an organization’s cybersecurity posture.
As of CSET version 11.5, the tool includes a Cross-Sector Cyber Performance Goals (CPG) assessment intended to help organizations determine the extent to which they have implemented CPGs.
The CPGs, developed by CISA and the National Institute of Standards and Technology (NIST), provide a minimum set of best practices and protection guidance that CISA and NIST recommend all organizations follow. CPGs are derived from existing cybersecurity frameworks and guidance to protect against the most common and impactful TTPs.
Network administrators of all organizations to include hybrid environments can use CSET to identify gaps and areas for future investment.
See CISA’s CSET GitHub page for directions on downloading and using CSET.
If you are interested in finding out more about the IISF, or would like to attend one of our Chapter Meetings as an invited guest, please contact the
Enhance your Cybersecurity knowledge and learn from those at the coalface of information Security in Ireland
Sponsors are featured prominently throughout the IISF.IE website, social media channels as well as enjoying other benefits Read more