CISA IRS

To Whom It May Concern:

Pursuant to the Freedom of Information Act, I hereby request the following records:

The CISA Incident Reporting System provides a secure web-enabled means of reporting computer security incidents to CISA ( OMB Control No.: 1670-0037 - https://us-cert.cisa.gov/forms/report). This system assists analysts in providing timely handling of security incidents as well as the ability to conduct improved analysis. I am requesting the records for every incident submitted to CISA through their Incident Reporting System submitted from January 1, 2020 until today’s date. These records should include but are not limited to an Incident ID, Incident Description, Date, Organizational Details ( including but not limited to a Name of Org ).

Along with the above incident reports, I also am requesting any malware artifacts submitted to the Department of Homeland Security under the "US-CERT AMAC Malware Analysis Submissions" form ( https://www.malware.us-cert.gov/ ) since January 1 2020. These records should include any file submissions as well as the aforementioned form fields.

If possible, I would prefer that these records be provided in a machine-readable format such as a PDF, CSV or Excel file, and transferred electronically. If you cannot transfer the requested records electronically to my email, then please send them on a CD-ROM.

The requested documents will be made available to the general public, and this request is not being made for commercial purposes.

In the event that there are fees, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 20 business days, as the statute requires.

Sincerely,

Dhruv Mehrotra