spot_img
36.2 F
Washington D.C.
Thursday, February 12, 2026
HomeSubject Matter AreasCybersecurity
CybersecurityInfrastructure SecurityCybersecurity and Infrastructure Security Agency

OIG: CISA Fails to Finalize Plans for Automated Cyber Threat Sharing After 2015 Cybersecurity Act Expiration

Homeland Security Today
By Homeland Security Today
September 30, 2025

Why the OIG Did This Audit

The Cybersecurity Information Sharing Act of 2015 requires the Department of Homeland Security to establish a capability and process for Federal entities to receive cyber threat information from non-Federal entities. Section 107 of the Act requires Inspectors General from the Intelligence Community and select agencies to submit a joint report to Congress every 2 years on actions to share cyber threat information.

The OIG conducted this review to determine the extent of DHS’ progress to meet the Act’s cybersecurity information-sharing requirements for calendar years 2023 and 2024.

What the OIG Found

The Cybersecurity and Infrastructure Security Agency (CISA) met requirements of the Cybersecurity Information Sharing Act of 2015. However, CISA has not finalized its plans for the continued use of Automated Indicator Sharing (AIS). Without finalizing this plan, CISA could be hindered in how it shares information on cyber threats, which would reduce its ability to protect the Nation’s critical infrastructure from cyber threats.

Since the OIG’s 2024 review, CISA made progress to meet the requirements of the Act by maintaining its guidance for information sharing, properly classifying cyber threat indicators and defensive measures, and accounting for security clearances of private-sector individuals.

Although AIS resulted in increased sharing of cyber threat indicators from approximately 1 million in 2023 to more than 10 million in 2024, this increase was primarily from one private-sector participant’s contributions, which accounted for 89 percent of the public collection and 83 percent of the Federal collection. This unevenness in reporting indicates potential overreliance on one partner. Moreover, CISA did not conduct adequate outreach to add AIS participants and reduce reliance on certain partners. The number of Federal and non-Federal AIS users decreased by 65 percent since peaking in 2020. To address this challenge, CISA continues to implement OIG’s previous recommendation to develop and implement a new strategy to recruit and retain AIS participants.

What the OIG Recommend

The OIG made one recommendation for CISA to determine whether to maintain AIS beyond September 30, 2025.

Read the full OIG report here.

Previous article
Agilent Announces New Insight Series Alarm Resolution Systems for Airport Security Screening
Next article
OIG: Results of an Unannounced Inspection of ICE’s Eloy Federal Contract Facility in Arizona

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

Related Articles

Latest Articles

Load more

© All content copyright ©2025 Homeland Security Today. All rights reserved. POWERED BY KAPCOM SERVICES