The DHS National Cyber Security Division conducts no-cost, voluntary Cyber Resilience Reviews to evaluate and enhance cyber security capacities and
capabilities within all 18 Critical Infrastructure and Key Resources (CIKR) Sectors.

The CRR seeks to understand cyber security management of services (and associated assets) critical for an organization’s mission success by focusing on protection and sustainment practices within ten key domains that contribute to the overall cyber resilience of an organization.

What to Expect

1. The CRR is a one-day, on-site facilitation and interview of key cyber security personnel.
2. The participants will receive a draft report within 45 calendar days to review and provide feedback report results. DHS will subsequently issue a final CRR Report.
3. CRR results are afforded protections under the DHS Protected Critical Infrastructure Information— the results are for organization use and DHS does not share results.

• Download the CRR Program Fact Sheet
• Download the CRR FAQ document