CISA publishes resilience-planning playbook for critical infrastructure | StateScoop<\/title> <meta name=\"description\" content=\"A new document from CISA guides local governments and the private sector on how to improve the resiliency of critical infrastructure.\"> <link rel=\"canonical\" href=\"https:\/\/statescoop.com\/cisa-cybersecurity-resilience-planning-playbook-critical-infrastructure\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"CISA publishes resilience-planning playbook for critical infrastructure | StateScoop\"> <meta property=\"og:description\" content=\"A new document from CISA guides local governments and the private sector on how to improve the resiliency of critical infrastructure.\"> <meta property=\"og:url\" content=\"https:\/\/statescoop.com\/cisa-cybersecurity-resilience-planning-playbook-critical-infrastructure\/\"> <meta property=\"og:site_name\" content=\"StateScoop\"> <meta property=\"article:published_time\" content=\"2024-07-18T18:22:25+00:00\"> <meta property=\"article:modified_time\" content=\"2024-07-18T18:24:00+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg\"> <meta property=\"og:image:width\" content=\"1406\"> <meta property=\"og:image:height\" content=\"929\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"sfoxsowell\"> <meta name=\"twitter:card\" content=\"summary_large_image\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"StateScoop \u00bb Feed\" href=\"https:\/\/statescoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"StateScoop \u00bb Comments Feed\" href=\"https:\/\/statescoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/statescoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1721147539g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/statescoop.com\/wp-content\/mu-plugins\/search\/elasticpress\/dist\/css\/related-posts-block-styles.min.css?m=1721117550g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/statescoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1721183474g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=ada0ad45b21fc79c6694\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/statescoop.com\/wp-json\/\"><link rel=\"alternate\" title=\"JSON\" type=\"application\/json\" href=\"https:\/\/statescoop.com\/wp-json\/wp\/v2\/posts\/65658\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/statescoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.6\">\n<link rel=\"shortlink\" href=\"https:\/\/statescoop.com\/?p=65658\">\n<link rel=\"alternate\" title=\"oEmbed (JSON)\" type=\"application\/json+oembed\" href=\"https:\/\/statescoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fstatescoop.com%2Fcisa-cybersecurity-resilience-planning-playbook-critical-infrastructure%2F\">\n<link rel=\"alternate\" title=\"oEmbed (XML)\" type=\"text\/xml+oembed\" href=\"https:\/\/statescoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fstatescoop.com%2Fcisa-cybersecurity-resilience-planning-playbook-critical-infrastructure%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/statescoop.com\/wp-content\/uploads\/sites\/6\/2023\/01\/cropped-ss_favicon.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/statescoop.com\/wp-content\/uploads\/sites\/6\/2023\/01\/cropped-ss_favicon.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/statescoop.com\/wp-content\/uploads\/sites\/6\/2023\/01\/cropped-ss_favicon.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/statescoop.com\/wp-content\/uploads\/sites\/6\/2023\/01\/cropped-ss_favicon.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-65658 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/statescoop.com\/cisa-cybersecurity-resilience-planning-playbook-critical-infrastructure\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"23.544609665428\">\n<div class=\"single-article__header-content\" readability=\"29.102362204724\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/statescoop.com\/news\/cybersecurity\/\"> <span>Cybersecurity<\/span> <\/a> <\/li>\n<\/ul>\n<p> A new document from CISA guides local governments and the private sector on how to improve the resiliency of critical infrastructure. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"423\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure.jpg?resize=640%2C423&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt=\"football play on chalkboard\" decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg 1406w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=300,198 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=768,507 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=1024,677 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=600,396 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=254,168 254w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=510,337 510w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=1022,675 1022w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-2.jpg?resize=1276,843 1276w\" sizes=\"(max-width: 1022px) 100vw, 1022px\"><figcaption> (Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"25.312879058152\"><body readability=\"51.729026469269\"><\/p>\n<p>The Cybersecurity and Infrastructure Security Agency on Wednesday published a supplemental manual to its <a href=\"https:\/\/www.cisa.gov\/sites\/default\/files\/publications\/Infrastructure-Resilience%20Planning-Framework-%28IRPF%29%29.pdf\">infrastructure resilience planning framework<\/a>, which provides guidance on how local governments and the private sector can work together to improve the security and resilience of the nation\u2019s critical infrastructure.<\/p>\n<p>The <a href=\"https:\/\/www.cisa.gov\/sites\/default\/files\/2024-07\/IRPF-Playbook-07-17-2024.pdf\">new playbook<\/a> includes processes and table top exercises to help public and private sectors minimize the impact of cyberattacks on their communities, reduce the risk of disruption to critical services and keep system restoration costs low.<\/p>\n<p>It also outlines key actions for resilience planning, such as establishing incident-response groups, identifying critical infrastructure and those that dependent on it, creating mitigation strategies and integrating solutions into existing protocols.<\/p>\n<p>\u201cReading through the Playbook process, not only are the IRPF steps articulated with clear inputs and outputs but the additional guidance on resilience concepts will help communities increase their readiness and bounce back quickly after a disaster,\u201d said David Mussington, CISA\u2019s executive assistant director for infrastructure security in the <a href=\"https:\/\/www.cisa.gov\/news-events\/news\/cisa-releases-playbook-infrastructure-resilience-planning\">Wednesday announcement<\/a>.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>According to CISA, the nation\u2019s critical infrastructure is comprised of sixteen industry sectors, including defense, energy, agriculture and maritime industries, such as <a href=\"https:\/\/statescoop.com\/us-ports-maritime-cybersecurity-threats-2024\/\">ports<\/a>, <a href=\"https:\/\/statescoop.com\/kansas-city-traffic-system-still-down-after-cyberattack\/\">transportation<\/a> and <a href=\"https:\/\/statescoop.com\/russian-cyberattack-wastewater-tipton-indiana\/\">water treatment facilities<\/a>, which have been increasingly targeted by cyberattacks from foreign adversaries.<\/p>\n<p>The playbook\u2019s release builds off the CISA\u2019s release in April of proposed incident-reporting requirements for government agencies operating in critical infrastructure sectors. In the 133-page <a href=\"https:\/\/www.govinfo.gov\/content\/pkg\/FR-2024-04-04\/pdf\/2024-06526.pdf\">report<\/a>, the agency said it plans to use the data it receives from incident reports to study cyberattack trends and to inform future strategies to improve resilience.<\/p>\n<p>Some <a href=\"https:\/\/statescoop.com\/election-officials-pen-letter-opposing-new-cisa-draft-rule-2024\/\">officials have objected<\/a> to the proposal, arguing that the mandate demands too much from often-understaffed local offices.<\/p>\n<p>On the <a href=\"https:\/\/www.cisa.gov\/resources-tools\/resources\/infrastructure-resilience-planning-framework-irpf-playbook\">manual\u2019s website<\/a>, CISA notes that the new playbook is a voluntary planning resource, and does not carry \u201cany regulations, define mandatory practices, provide a checklist for compliance or carry statutory authority.\u201d<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"3.3089005235602\">\n<div class=\"author-card\" readability=\"13\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure-1.jpg?w=640&ssl=1\" alt=\"Sophia Fox-Sowell\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by Sophia Fox-Sowell<\/h4>\n<p> Sophia Fox-Sowell reports on artificial intelligence, cybersecurity and government regulation for StateScoop. She was previously a multimedia producer for CNET, where her coverage focused on private sector innovation in food production, climate change and space through podcasts and video content. She earned her bachelor\u2019s in anthropology at Wagner College and master\u2019s in media innovation from Northeastern University. <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p>  <\/div>\n<p>\n<\/div>\n<p> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Modernization<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Cybersecurity<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to StateScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/statescoop.com\/cisa-cybersecurity-resilience-planning-playbook-critical-infrastructure\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>CISA publishes resilience-planning playbook for critical infrastructure | StateScoop Skip<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[78],"tags":[86],"class_list":["post-4531","post","type-post","status-publish","format-standard","hentry","category-cybersecurity","tag-cybersecurity"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybersecurity\/\" rel=\"category tag\">Cybersecurity<\/a>","tag_info":"Cybersecurity","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4531","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=4531"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4531\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=4531"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=4531"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=4531"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":4531,"date":"2024-07-18T13:27:55","date_gmt":"2024-07-18T18:27:55","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=81055"},"modified":"2024-07-18T13:27:55","modified_gmt":"2024-07-18T18:27:55","slug":"cisa-publishes-resilience-planning-playbook-for-critical-infrastructure","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/07\/18\/cisa-publishes-resilience-planning-playbook-for-critical-infrastructure\/","title":{"rendered":"CISA publishes resilience-planning playbook for critical infrastructure"},"content":{"rendered":"