The Cybersecurity and Infrastructure Security Agency released an updated Infrastructure Resilience Planning Framework (IRPF) today to better help state, local, tribal, and territorial planners manage risk to critical infrastructure systems and enhance their resilience. First released in 2021, today’s update to the IRPF adds important new resources and tools to better support partners as they face an evolving threat environment.
The federal government has provided billions of dollars to communities recovering from disasters like floods, hurricanes, and wildfires. But federal disaster recovery programs are spread across more than 30 agencies, making it difficult for communities to figure out who to turn to for help. The U.S. Government Accountability Office (GAO) also identified 11 options—including the strengths and limitations of each—that could improve the federal approach to disaster recovery. Congress should consider establishing an independent commission that could recommend reforms.
This document provides the first annual report outlining progress towards implementation of relevant capabilities, highlights priority actions that are ongoing and needed across departments and agencies in the U.S. Government and the private sector, and identifies science and technology opportunities to fill gaps and ensure that the nation is properly prepared for emerging pandemic threats.
The Government of Canada established the Task Force on Flood Insurance and Relocation (the “Task Force”) in order to advance a sustainable solution to rising flood costs. The Task Force conducted its work collaboratively with partners from the Government of Canada, provincial and territorial governments, the insurance industry, and other stakeholders concerned with Canada’s growing flood risk.
The White House Office of Science and Technology Policy (OSTP) submits this report to the Appropriations Committees of the Senate and House of Representatives pursuant to the Consolidated Appropriations Act, 2022. This report draws on current research and data available and information received through extensive engagement and consultation with diverse stakeholders, including publishers, federal agencies, and other organizations.
This review was conducted to evaluate the Cybersecurity and Infrastructure Security Agency's (CISA) progress in meeting the Cybersecurity Act’s requirements for 2019 and 2020. They recommend that CISA complete system upgrades, hire needed staff, encourage compliance with information sharing agreements and develop a formal reporting process with quality controls.
The National Tribal Strategy provides the Federal Emergency Management Agency (FEMA) and Tribal Nations with the necessary roadmap to pursue and achieve shared priorities to support tribal communities before, during and after disasters. FEMA developed the strategy to address its responsibilities to build, enhance and sustain its relationships with tribal communities.
The scale and efficiency of our global technology infrastructure are made possible through the standardization of key building blocks. These reusable building blocks, while useful for creating software at scale, also create dependencies and risks that are often not understood until they manifest as a security issue. For example, a vulnerability in a software building block that is integrated into numerous other software packages means that every organization that uses those packages is at risk. It also means that system owners may not know where vulnerable software lives within their environments. When such a vulnerability is also easy for a threat actor to exploit to obtain broad control over a compromised system, it can create a once-in-a-generation security event. This is what happened with the Log4j vulnerability that came to public attention in December 2021.
This Guide to Expanding Mitigation for Older Adults was created in partnership between FEMA and AARP, the nation’s largest advocacy organization representing the needs of Americans age 50 and older. It highlights the value of creating accessible communities for all ages. It also recommends ways for community officials to include older adults in efforts to reduce risk through hazard mitigation. That includes the planning and project development, implementation and evaluation processes. This guide serves as a starting point for community officials to discuss how these partnerships in mitigation can create more livable, accessible, and resilient communities for all.
Through grants to states, FEMA uses the HMGP to purchase properties that are flood damaged or in flood-prone areas, demolish any structures on them, and ensure they are maintained forever as open space. FEMA has acquired more than 32,000 properties for open space since 1989. This audit was conducted to determine whether FEMA is properly using the HMGP for property acquisitions. FEMA made four recommendations to help FEMA strengthen its property acquisition activities in this report.