Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

This page is no longer being updated and the information may be out of date.

CSF 1.1 Critical Infrastructure Resources

General

Critical Infrastructure

SMB

International

Federal

Assessment & Auditing

SLTT

Academia

Resources related to the 16 U.S. Critical Infrastructure sectors.

CHEMICAL SECTOR

COMMERCIAL FACILITIES SECTOR

COMMUNICATIONS SECTOR

CRITICAL MANUFACTURING SECTOR

DAMS SECTOR

DEFENSE INDUSTRIAL SECTOR

  • NIST Special Publication (SP) 800-171

EMERGENCY SERVICES SECTOR

ENERGY SECTOR

FINANCIAL SERVICES SECTOR

  • Conference of State Bank Supervisors' Cybersecurity 101: A Resource Guide for Bank Executives 
    (A non- technical, easy-to-read resource on cybersecurity that community bank CEOs, senior executives and board members can use to help mitigate cybersecurity threats at their banks.)
  • Federal Financial Institutions Examination Council's Cybersecurity Assessment Tool
    (An Assessment is based on the cybersecurity assessment that the FFIEC members piloted in 2014, which was designed to evaluate community institutions’ preparedness to mitigate cyber risks. NIST defines cybersecurity as “the process of protecting information by preventing, detecting, and responding to attacks.”)
  • Federal Financial Institutions Examination Council's Mapping Cybersecurity Assessment Tool to NIST Cybersecurity Framework
  • The Financial Industry Regulatory Authority Report on Cybersecurity Practices
    (A report which details practices that firms can tailor to their business model as they strengthen their cybersecurity efforts.)
  • The Cyber Risk Institute’s The Profile 
    (A customization of the NIST Cybersecurity Framework that financial institutions can use for internal and external cyber risk management assessment and as a mechanism to evidence compliance with various regulatory frameworks)

FOOD AND AGRICULTURAL SECTOR

GOVERNMENT FACILITIES SECTOR

  • No known available resources. We encourage submissions!

HEALTHCARE AND PUBLIC HEALTH SECTOR

INFORMATION TECHNOLOGY SECTOR

  • No known available resources. We encourage submissions!

NUCLEAR REACTORS, MATERIALS, AND WASTE SECTOR

TRANSPORTATION SYSTEMS SECTOR

WATER AND WASTEWATER SYSTEMS SECTOR

Created February 6, 2018, Updated February 26, 2024