DOWNLOAD LINK: https://cset-download.inl.gov/
What's New:
-
Cybersecurity Performance Goals (CPG) 1.0.1: The CPGs are a prioritized subset of IT and operational technology (OT) cybersecurity practices that critical infrastructure owners and operators can implement to meaningfully reduce the likelihood and impact of known risks and adversary techniques. The goals were informed by existing cybersecurity frameworks and guidance, as well as the real-world threats and adversary tactics, techniques, and procedures (TTPs) observed by CISA and its government and industry partners. This assessment is intended to help organizations determine the extent to which they have implemented the Goals, and to aid in identifying areas for potential future investment.
-
Minimum Viable Resilience Assessment (MVRA): MVRA assesses the critical service or services essential to the success of an organization’s mission and, if disrupted, would severely impact the organization’s operations or business. To accomplish this, an MVRA focuses on the Information Technology (IT) and Operational Technology (OT) used to deliver or secure the critical service. The assessment’s risk-informed approach centers on cybersecurity “capabilities” that the assessed entity and relevant systems must implement successfully to maintain resilience to cyber-attacks. Subjects of the review include people (staffing), technology, information, and facilities, as appropriate.
-
Land Mobile Radio (LMR) Rapid Assessment: This module is designed to assist system owners in assessing key aspects of a LMR system’s current cybersecurity status based on a subset of NIST SP 800-53 “Security and Privacy Controls for Information Systems and Organizations”. It provides guidance on responding to the control questions so that a LMR system owner can gain insights into the cybersecurity status of their LMR system and identify measures for improvement.
-
HHS 405 (d): The HHS 405(d) Program was established in response to the Cybersecurity Act of 2015. Under section 405(d), HHS convened the CSA 405(d) Task Group to enhance cybersecurity and align industry approaches by developing a common set of voluntary, consensus-based, and industry-led cybersecurity guidelines, practices, methodologies, procedures, and processes that healthcare organizations can use.
-
Gallery View: Updated the Assessment page to be easier to use and intuitive. This simple design should allow for users to quickly navigate to the assessments that they are interested in.
-
Bug fixes and general quality of life improvements.
-
General screenshot updates for help material.
Algorithm: SHA256
Hash: B9B98AF0CB8AFBC73FCBFEE96C379C904628879B177B13EE669909065E5F4344
Path: CSETStandAlone.exe