CISA Releases Directive for Federal Agencies, DHS to Lead Known Cyber Vulnerabilities Purge Effort

On November 3, 2021, the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security (DHS) released a binding operational directive with a new strategy guiding civilian federal agencies' management of known exploited vulnerabilities. The catalog of vulnerabilities provides remediation deadlines as early as November 17, 2021.