ASPR releases cybersecurity module to conduct risk assessments 

Mar 06, 2026 - 02:02 PM
Cybersecurity Lock on Gold Wall

The Administration for Strategic Preparedness and Response has released a new cybersecurity module for organizations to conduct risk assessments. The free module, part of ASPR’s web-based Risk Identification and Site Criticality 2.0 Toolkit, allows organizations to identify threats, assess vulnerabilities, determine consequences and criticality, and share findings with stakeholders. Users are guided through a series of questions about their policies and practices, which are scored against the National Institute of Standards and Technology’s Cybersecurity Framework 2.0 and the Department of Health and Human Services’ Cybersecurity Performance Goals. The questions are designed to help organizations identify critical gaps, prioritize investments and inform their decisions on risk mitigation. 

Related News Articles

Perspective
Staying Cyber Alert and Cyber Ready
Public
As the world has learned in recent years, today’s conflicts are fought with many weapons, and cyber warfare is an integral part of the arsenal.As of this…
Headline
FBI reminds of potentially malicious activity by Iranian cyber actors
The FBI is reminding critical infrastructure organizations to implement mitigations from a June 2025 fact sheet on potential actions by Iranian-affiliated…
Headline
CISA report updates findings on RESURGE malware attacks
The Cybersecurity and Infrastructure Security Agency Feb. 26 released a report that updates findings from last year on RESURGE malware used to gain covert…
Headline
Agencies issue guidance on exploitation of Cisco systems by cyber actors 
U.S. and international agencies Feb. 25 released guidance on protecting Cisco Software-defined Wide-area Networking systems from exploitation by malicious…
Headline
NSA issues guidelines on zero trust architecture
The National Security Agency has released two phases of its Zero Trust Implementation Guidelines for organizations to improve their zero trust architecture.…
Headline
CISA announces town halls to gather public input on proposed cyber incident reporting requirements
The Cybersecurity and Infrastructure Security Agency announced Feb. 13 that it will host a series of virtual town hall meetings to gather public input on…