A Plan to Protect Critical Infrastructure From 21st Century Threats

The Cybersecurity and Infrastructure Security Agency (CISA) released a blog by Director Easterly, introducing the agency’s initiatives to implement National Security Memorandum-22 (NSM-22) and draft the 2025 National Infrastructure Risk Management Plan. The blog discusses the updated national policy on protecting critical infrastructure from cyber and all-hazard threats outlined in NSM-22. It emphasizes a new risk management cycle that prioritizes collaboration to identify and mitigate risks across sectors. The National Plan, replacing the 2013 plan, will guide federal efforts in securing infrastructure and calls for collective efforts from government, private sector, and other stakeholders to address emerging risks and ensure its success. For further information, please visit the full blog post here.