The US Cybersecurity and Infrastructure Security Agency (CISA) has releases the Ransomware Readiness Assessment (RRA), a new ransomware self-assessment security audit tool for the agency’s Cyber Security Evaluation Tool (CSET).

Ransomware Readiness Assessment (RRA) Defend Against the Growing Threat

CISA mentions that “RRA aims to help out an organization gets better by focusing on the basics first and subsequently progressing by implementing practices through the intermediate and advanced categories”.

RRA will assist to know the cybersecurity posture concerning the ever-evolving threat of ransomware. It also provides a clear path for improvement and contains an evolving progression of questions tiered by the categories of basic, intermediate, and advanced.

The tool would facilitate organizations in improving their resilience to ransomware attacks by executing best practices.

Additionally, the Ransomware Readiness Assessment (RRA) directs asset owners and operators through a systematic process to assess their Operational Technology (OT) and Information Technology (IT) network security practices against the ransomware threat.


It also provides an analysis dashboard with graphs and tables that present the estimation results in both summary and detailed form.

How to Utilize the RRA Security Audit Tool?

To make use of RRA, install CSET and then,

  • Login or start the CSET application
  • Start a new assessment
  • Select Maturity Model within the Assessment Configuration screen (this is the first screen you’re presented with after selecting “New Assessment”)
  • Select Ransomware Readiness Assessment from the Maturity Model screen
  • Now you are set to complete the RRA assessment. Review the tutorial for additional instruction, or the RRA guide found within the Help menu.

CISA suggests organizations download and utilizes the CSET Ransomware Readiness Assessment, which is available on the Agency’s Git Hub Repository.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.