CISA Recommends Cybersecurity “Best Practices” in Advance of Winter Holidays

Dec 16, 2021

Reading Time : 1 min

CISA warned that “[s]ophisticated threat actors, including nation-states and their proxies, have demonstrated capabilities to compromise networks and develop long-term persistence mechanisms,” as well as “capability to leverage this access for targeted operations against critical infrastructure with potential to disrupt National Critical Functions,” which are “functions of government and private industry so vital that their disruption, corruption, or dysfunction would have a debilitating effect on security, national economic security, and public health or safety,” including, for example, the generation, transmission and distribution of electricity. (See here).

CISA provided a number of proactive “best practices” that entities can take to “strengthen operational resiliency by improving network defenses and rapid response capabilities.” Its principal recommendations are to:

  1. “Increase organizational vigilance by ensuring there are no gaps in Information Technology (IT)/Operational Technology (OT) security personnel coverage [during the holiday season, when staffing may be reduced,] and that staff provides continual monitoring for all types of anomalous behavior.”
  2. “Prepare your organization for rapid response by adopting a state of heightened awareness.” This includes creating, updating or reviewing, as applicable, cybersecurity incident response procedures and continuity plans, and ensuring that personnel know what to do during and after an incident, so they can continue to “operate key functions in an IT-constrained or otherwise degraded environment.”
  3. “Ensure your network defenders implement cybersecurity best practices” such as using multifactor authentication and strong passwords for access to systems, installing approved software updates (while “prioritizing known exploited vulnerabilities”) and securing accounts and access credentials.
  4. “Stay informed about current cybersecurity threats and malicious techniques,” including by keeping up with CISA notifications about security topics and known threats.
  5. “Lower the threshold for threat and information sharing” and “[i]mmediately report cybersecurity incidents and anomalous activity to CISA and/or the FBI.”

CISA also provided additional actions to improve general cybersecurity hygiene, enhance functional resilience and speed incident response capabilities, as well as links to resources for additional information and guidance. Best wishes for safe and healthy winter holidays for all.

Share This Insight

Previous Entries

Speaking Energy

June 25, 2026

On June 18, 2026, the Federal Energy Regulatory Commission (FERC or the Commission) issued an order to the California Independent System Operator Corporation (CAISO) directing CAISO and CAISO transmission owners to show cause as to why CAISO’s tariff should not be found to be unjust and unreasonable (California Indep. Sys. Operator Corp., 195 FERC ¶ 61,214 (2026) (the Order)) because it fails to sufficiently:

...

Read More

Speaking Energy

June 24, 2026

On June 18, 2026, the Federal Energy Regulatory Commission (FERC or the Commission) issued an order to New York Independent System Operator, Inc. (NYISO) directing NYISO and NYISO transmission owners to show cause as to why NYISO’s tariff should not be found to be unjust and unreasonable (New York Independent System Operator, Inc., 195 FERC ¶ 61,216 (2026) (Order)) because it fails to sufficiently:

...

Read More

Speaking Energy

June 23, 2026

On June 18, 2026, the Federal Energy Regulatory Commission (FERC or the Commission) issued an order to Midcontinent Independent System Operator, Inc. (MISO) directing MISO and MISO transmission owners to show cause as to why MISO’s tariff should not be found to be unjust and unreasonable (Midcontinent Independent System Operator, Inc., 195 FERC ¶ 61,212 (2026) (Order)) because it fails to sufficiently:

...

Read More

Speaking Energy

June 23, 2026

On June 18, 2026, the Federal Energy Regulatory Commission (FERC or the Commission) issued an order to PJM Interconnection, L.L.C. directing PJM and PJM transmission owners to show cause as to why PJM’s tariff should not be found to be unjust and unreasonable (PJM Interconnection, L.L.C., 195 FERC ¶ 61,211 (2026) (the Order)) because it fails to sufficiently:

...

Read More

© 2026 Akin Gump Strauss Hauer & Feld LLP. All rights reserved. Attorney advertising. This document is distributed for informational use only; it does not constitute legal advice and should not be used as such. Prior results do not guarantee a similar outcome. Akin is the practicing name of Akin Gump LLP, a New York limited liability partnership authorized and regulated by the Solicitors Regulation Authority under number 267321. A list of the partners is available for inspection at Eighth Floor, Ten Bishops Square, London E1 6EG. For more information about Akin Gump LLP, Akin Gump Strauss Hauer & Feld LLP and other associated entities under which the Akin Gump network operates worldwide, please see our Legal Notices page.