The Cybersecurity and Infrastructure Security Agency (CISA) on Friday released the first in a series of six Cyber Essentials Toolkits.

According to the agency, this is a starting point for small businesses and government agencies to understand and address cybersecurity risk as they do other risks.

CISA’s toolkits will provide “greater detail, insight and resources on each of the Cyber Essentials’ six Essential Elements of a Culture of Cyber Readiness.”

“We thank all of our partners in government and the private sector who played an essential role in the development of CISA’s Cyber Essentials Toolkit,” said CISA Director Christopher Krebs. “We hope this toolkit, and the ones we are developing, fills gaps and provides executives the tools they need to raise the cybersecurity baseline of their teams and the organizations they lead.”

Each of the six Cyber Essentials includes a list of actionable items anyone can take to reduce cyber risks. These are:

Drive cybersecurity strategy, investment, and culture;
Develop heightened level of security awareness and vigilance;
Protect critical assets and applications;
Ensure only those who belong on your digital workplace have access;
Make backups and avoid loss of info critical to operations; and
Limit damage and restore normal operations quickly.