CISA CPG

Skill packages tagged with “CISA CPG”

Browse Skills Browse all tags
Ecosystem Risk Ranker (CISA CPG 4.1)

Map and rank external dependencies (SaaS, cloud, utilities) essential to a Critical Service. Assigns criticality scores by impact of vendor outage on mission and validates vendor uptime SLAs against the organization's Maximum Allowable Downtime (MAD). Aligned with CISA CPG 4.1 Critical Service Dependency Map.

    Critical Infrastructure CISA CPG Risk Management Supply Chain SLA
    Learn More
    SBOM Risk Scorer

    CISA CPG 6.1 Supply Chain SBOM Review: analyze CycloneDX or SPDX SBOMs for Vulnerability Debt and gatekeeping evidence. Summarizes vulnerability debt and flags EOL and critical-CVE components for Accept/Reject decisions.

      CISA CPG SBOM Supply Chain Critical Infrastructure Vulnerability Management
      Learn More

      Ready to let your expertise drive the workflow?

      Stop wrestling with rigid templates and complex tooling. Write your process in markdown, let the agent handle the rest.

      Get Started