CISA has ordered federal agencies to remove from the internet any “networked management devices,” making them accessible only from an internal network, or to harden them with zero-trust capabilities.
A federal judge on Tuesday issued an order restricting Biden administration officials from getting in touch with social media companies over “content containing protected free speech.”
The agency appears to be struggling with internal divisions, morale problems and growing concerns about leadership priorities.
Earlier this month CISA issued a binding operational directive ordering civilian agencies to remove any “networked management devices” from the open internet within two weeks.
A small number of federal agencies are still working with CISA on fully following rules concerning vulnerability disclosure requirements.
CISA and the NSA warned federal agencies that malicious hackers used legitimate remote monitoring and management software to execute scams.
The quasi-judicial agency was hit earlier this year during the attack, according to The Washington Post.
After nearly two years at the Cybersecurity and Infrastructure Security Agency, Todt will leave for a job in the private sector.
The guidance is intended to speed up cultural shifts within the technology industry needed to achieve a safe future online.
CISA is considering changes to EINSTEIN 1 and EINSTEIN 2, which monitor traffic routed in and out of physical networks and systems.
