CISA Binding Operational Directive 22-01 – Reducing the Significant Risk of Known Exploited Vulnerabilities


A binding operational directive is a compulsory direction to federal, executive branch, departments and agencies for purposes of safeguarding federal information and information systems.

Section 3553(b)(2) of title 44, U.S. Code, authorizes the Secretary of the Department of Homeland Security (DHS) to develop and oversee the implementation of binding operational directives.

Federal agencies are required to comply with DHS-developed directives.

Read more…
Source: U.S. Cybersecurity and Infrastructure Security Agency