CISA Ransomware Product Survey

OMB Control Number: 1670-0027

The Department of Homeland Security (DHS) Cybersecurity Infrastructure Security Agency (CISA) is charged with enhancing the security, resiliency, and reliability of the nation's cyber, communications, and physical infrastructure, as well as with supporting DHS’s mission to manage risk. CISA will use this survey to identify opportunities to improve our products and services, we ask that you please take 5 minutes to complete this anonymous and voluntary survey to understand your expectations and values, so we may use the information to help us bring those expectations and values to reality. Thank you.

Please note CISA does not intend to collect any Personally Identifiable Information (PII) such as respondent contact information (names, organizations, phone numbers, email addresses). Please do not provide any PII in the open text fields.

PRA Burden Statement: The public reporting burden to complete this information collection is estimated at 5 minutes per response, including the time completing and reviewing the collected information. The collection of this information is voluntary. An agency may not conduct or sponsor, and a person is not required to respond to a collection of information unless it displays a currently valid OMB control number and expiration date. Send comments regarding this burden estimate or any other aspect of this collection of information, including suggestions for reducing this burden to DHS/CISA. Mail Stop 0608, 245 Murray Lane SW, Arlington, VA 20598. ATTN: PRA [1670-0027].

Question Title

* 1. Please rate the product’s overall value:

Very valuable

Somewhat valuable

Of limited value

Not valuable

Question Title

* 2. Please rate the product’s utility:

Highly actionable – shaped and/or strengthened cybersecurity policy or implementation (e.g. signature development, deemed shareable)

Actionable – helped existing security posture or confidence

Not actionable – did not contain usable/actionable information (e.g. TTPs, indicators)

Question Title

* 3. Please rate the product’s quality of analysis:

High quality analysis – uniquely insightful, drove organizational strategic decisions, or drove significant operational/tactical actions

Acceptable quality analysis – reinforced or corroborated other sources’ analysis

Low quality analysis – did not address key questions and/or contained errors that eroded confidence in recommended actions

Question Title

* 4. Please rate the product’s timeliness:

Very timely – helped organization to stay ahead of emerging threats (e.g. campaign, zero-days)

Timely – helped organization to confirm known information and/or address existing challenges

Not timely – information was provided after organization needed it, information was available earlier from other sources, or information was no longer relevant for defensive action

Question Title

* 5. What else did you find particularly useful or lacking in the product?

Question Title

* 6. What improvements can be made to the product to better suit your needs?

Question Title

* 7. How frequently do you use CISA products?

Very frequently

Frequently

Infrequently

Very infrequently

Question Title

* 8. How do you use CISA products? (please select all that apply)

Daily network operations

Situational awareness

When an event affects my organization

Personal interest

I do not use CISA products

Question Title

* 9. What other sources do you use for cybersecurity threat or vulnerability information alerts? (please select all that apply)

Federal Law Enforcement (ICE, USSS)

The Intelligence Community (FBI, NSA, CIA)

Private Sector Cybersecurity Vendors

I was unaware of other sources

Other (please identify)

Question Title

* 10. How do CISA products compare to other sources from which you receive information?

Excellent (exceeding the value, quality, and timeliness of the other products available; very actionable)

Good (valuable to organizational cybersecurity; matches quality and detail of similar products; actionable in cybersecurity; sufficiently timely)

Satisfactory (less valuable but actionable, lower quality, or less timely)

Poor (lower value, not actionable, poor quality, or not timely)

I do not use information from other sources

Question Title

* 11. What is your role in cybersecurity for your organization?

Organizational Director or Resource Decision-maker

CISO or Cybersecurity Director

Security Engineer or IDS/IPS Manager/Operator

Cybersecurity Analyst or Researcher

IT Manager

I do not play a cybersecurity role for my organization

Other (please identify)

Question Title

* 12. Please describe your organization: (please select all that apply)

U.S. Federal Government Department or Agency

U.S. State, Local, Tribal, or Territorial Government

Non-U.S. Government

Non-U.S. Citizen

Private Sector

Academia

Nonprofit

Critical Infrastructure

Cybersecurity Vendor/Provider

Individual: Citizen/Retired/Student/etc.

None of the above