You are viewing this page in an unauthorized frame window.

This is a potential security issue, you are being redirected to https://csrc.nist.gov.

You have JavaScript disabled. This site requires JavaScript to be enabled for complete site functionality.

An official website of the United States government

Here’s how you know

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Institute of Standards and Technology

CSRC MENU

Projects
Publications Expand or Collapse

Drafts for Public Comment

All Public Drafts

Final Pubs

FIPS (standards)

Special Publications (SPs)

IR (interagency/internal reports)

CSWP (cybersecurity white papers)

ITL Bulletins

Project Descriptions

Journal Articles

Conference Papers

Books
Topics Expand or Collapse

Security & Privacy

Applications

Technologies

Sectors

Laws & Regulations

Activities & Products
News & Updates
Events
Glossary
About CSRC Expand or Collapse
Computer Security Division
Applied Cybersecurity Division
Contact Us

Information Technology Laboratory

Computer Security Resource Center

CSRC Logo

Topics Laws and Regulations executive documents

Cybersecurity Strategy and Implementation Plan CSIP

Share to Facebook Share to X Share to LinkedIn Share ia Email

OMB Memo M-16-04, Cybersecurity Strategy and Implementation Plan (CSIP) for the Federal Civilian Government (October 30, 2015), resulted from a comprehensive review in 2015 of the Federal Government's cybersecurity policies, procedures, and practices by the Cybersecurity Sprint Team. Its intent was to identify and address critical cybersecurity gaps and emerging priorities, and make specific recommendations to address those gaps and priorities. The five objectives of CSIP are:

Prioritized Identification and Protection of high value information and assets;
Timely Detection of and Rapid Response to cyber incidents;
Rapid Recovery from incidents when they occur and Accelerated Adoption of lessons learned from the [Cybersecurity] Sprint assessment;
Recruitment and Retention of the most highly-qualified Cybersecurity Workforce talent the Federal Government can bring to bear; and
Efficient and Effective Acquisition and Deployment of Existing and Emerging Technology.

Related Projects

Cybersecurity Supply Chain Risk Management C-SCRM
Cybersecurity Supply Chain Risk Management (C-SCRM) involves identifying, assessing, and mitigating...

View All Projects

Related News

Draft CSF Profile for Semiconductor Manufacturing
February 27, 2025
The NIST National Cybersecurity Center of Excellence (NCCoE) along with the SEMI Semiconductor...

Best Practices Whitepaper for Privileged User PIV Authentication
February 5, 2016
This draft white paper is a best practices guide. The paper is in response to the Cybersecurity...

View All News

Related Publications

Data Integrity: Detecting and Responding to Ransomware
SP 1800-26
December 2020
Final

Identifying and Protecting Assets Against Ransomware
SP 1800-25
December 2020
Final

Identifying and Protecting Assets Against Ransomware
SP 1800-25 (Initial Public Draft)
January 2020
Withdrawn

Detecting and Responding to Ransomware
SP 1800-26 (Initial Public Draft)
January 2020
Withdrawn

Improving the Trustworthiness of Email
ITL Bulletin
April 2018
Final

View All Publications

Cybersecurity Strategy and Implementation Plan CSIP

Related Projects

Related News

Related Publications

Related Presentations

Used For

Topics