Blog Compliance
CISA Cyber Performance Goals: Third-Party & Supply Chain Requirements
Read Cybersecurity Infrastructure Security Agency (CISA)5 Minute Read
The Ultimate TPRM & Cyber Risk Glossary
When in doubt, use an acronym.
Whether you’re a seasoned healthcare CISO or you’re new to the industry and convinced people are just making up acronyms—this glossary has you covered. From standard industry frameworks to CORL-specific terms, it’s your Rosetta Stone for healthcare TPRM, cyber risk, and compliance.
Understanding the Cybersecurity Infrastructure Security Agency (CISA)
CISA is a U.S. federal agency focused on defending critical infrastructure from both cyber and physical threats. CISA offers guidance, alerts, and tools to help organizations improve their cybersecurity defenses.
CISA introduced Cybersecurity Performance Goals (CPGs) as part of its mission to help organizations establish clear, baseline security measures. CPGs are a prioritized set of IT and cybersecurity measures, offering organizations actionable steps they can take to improve their cybersecurity posture. They focus on areas like asset management, vulnerability management, and incident response.
In healthcare, CISA provides critical resources on protecting sensitive systems, addressing ransomware attacks, and securing third-party relationships. CORL aligns with CISA’s mission by helping healthcare organizations implement effective risk management practices, ensuring their vendor networks and critical infrastructure are safeguarded from emerging cyber threats.