BankInfoSecurity May 5, 2021 Twitter Get Permission Although the Cybersecurity and Infrastructure Security Agency has made significant strides since it was established in 2018, it still has important work to do to fulfill its cybersecurity and national security obligations, according to a recent audit by the Government Accountability Office. This includes improving communication with companies that share responsibility for the security of critical infrastructure as well as soliciting private sector input on creating specific security plans for each industry. The federal watchdog made 11 recommendations for how CISA can fulfill the requirements laid out in the Cybersecurity and Infrastructure Security Agency Act of 2018. That law established CISA as a stand-alone agency within the U.S. Department of Homeland Security with a charter to protect the nation's critical infrastructure.