The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday announced the release of a new module for its Cyber Security Evaluation Tool (CSET), namely the Ransomware Readiness Assessment (RRA).
A Department of Homeland Security (DHS) product, CSET was designed to help organizations assess their security posture, and is applicable to both IT and industrial control system (ICS) networks.
CSET includes a series of requirement questionnaires derived from recognized government and industry standards and can output a list of recommendations that should help organizations improve the security of their networks, in line with best cybersecurity standards, guidelines, and practices.
The new Ransomware Readiness Assessment (RRA) module gets defenders through a step-by-step process to assess their threat readiness in respect to ransomware attacks.
“The RRA is a self-assessment based on a tiered set of practices to help organizations better assess how well they are equipped to defend and recover from a ransomware incident,” CISA explains.
The tool was crafted for several different levels of ransomware threat readiness, so that all types of organizations can use it, regardless of their current preparedness or cybersecurity maturity.
The RRA offers ransomware threat readiness evaluation in a systematic, disciplined, and repeatable manner, helps assess both operational technology (OT) and IT network security practices, and delivers an analysis dashboard with graphs and tables to view assessment results.
Related: CISA Announces Vulnerability Disclosure Policy Platform
Related: CISA Issues MITRE ATT&CK Mapping Guide for Threat Intelligence Analysts
Related: U.S. Department of State Approves New Cyberspace Security Bureau

More from Ionut Arghire
- Air Canada Says Employee Information Accessed in Cyberattack
- BIND Updates Patch Two High-Severity DoS Vulnerabilities
- Faster Patching Pace Validates CISA’s KEV Catalog Initiative
- TransUnion Denies Breach After Hacker Publishes Allegedly Stolen Data
- Legit Security Raises $40 Million in Series B Financing
- Atlassian Security Updates Patch High-Severity Vulnerabilities
- Critical Infrastructure Organizations Warned of Snatch Ransomware Attacks
- Tor-Based Drug Marketplace Piilopuoti Shut Down by Law Enforcement
Latest News
- Researchers Discover Attempt to Infect Leading Egyptian Opposition Politician With Predator Spyware
- In Other News: New Analysis of Snowden Files, Yubico Goes Public, Election Hacking
- China’s Offensive Cyber Operations in Africa Support Soft Power Efforts
- Air Canada Says Employee Information Accessed in Cyberattack
- BIND Updates Patch Two High-Severity DoS Vulnerabilities
- Faster Patching Pace Validates CISA’s KEV Catalog Initiative
- SANS Survey Shows Drop in 2023 ICS/OT Security Budgets
- Apple Patches 3 Zero-Days Likely Exploited by Spyware Vendor to Hack iPhones
