CSMS 55845515·Operational·April 10, 2023·View on csms.cbp.gov ↗

CBP Provides Guidance on Cybersecurity Best Practices to Increase Supply Chain Resiliency

Plain-English explanation

CSMS 55845515 is a U.S. Customs and Border Protection (CBP) Cargo Systems Messaging Service bulletin (operational), published on April 10, 2023. It carries the official CBP guidance brokers and importers must follow for the topic — "CBP Provides Guidance on Cybersecurity Best Practices to Increase Supply Chain Resiliency". CSMS messages are the operational layer between Commerce determinations and at-the-border collections: when Commerce publishes a new rate, scope ruling, or instruction, CBP turns it into a CSMS that ACE/ACS systems and brokers act on.

Message body

Full text as published by U.S. Customs and Border Protection

CSMS # 55845515 - CBP Provides Guidance on Cybersecurity Best Practices to Increase Supply Chain Resiliency U.S. Customs and Border Protection sent this bulletin at 04/10/2023 04:57 PM EDT Cargo Systems Messaging Service CSMS # 55845515 - CBP Provides Guidance on Cybersecurity Best Practices to Increase Supply Chain Resiliency On April 10th 2023, U.S. Customs and Border Protection (CBP) released a new guidance document containing best practices for customs brokers on how to prepare for and respond to a cyber-attack. The new resource makes recommendations on how to prevent, respond to, and recover from potential cyber-attacks on customs broker data systems, from proactively putting in place plans and preventative IT controls to resuming normal business operations upon system remediation. This document is part of a broader CBP supply chain resiliency focus and reflects insights gathered from recent cyber-attacks and a tabletop exercise CBP held this February in Washington, D.C. That event brought together representatives from CBP, partner government agencies, and licensed customs brokers to test the customs environment’s existing cyber security guidance and identify opportunities to improve supply chain resiliency. In addition to the Cyber Incident Guidance for Customs Brokers, CBP is developing more detailed cyber-attack guidance that will be shared on CBP.gov. CBP is focusing on supply chain resiliency to establish clear expectations for both industry and government actors on processes, procedures, and responsibilities in the face of man-made supply chain disruptions. Recent events have resulted in significant disruptions to commercial and consumer activity, including shortages of personal protective equipment, baby formula, and other critical goods. Cybersecurity is the first topic CBP is exploring as part of supply chain resiliency efforts. CBP looks forward to continued collaboration with government and industry partners to improve collective readiness and mitigate the negative impacts of future supply chain disruptions on consumers and businesses in the U.S. Cyber Incident Guidance Slick Sheet.pdf Update your subscriptions, modify your password or e-mail address, or stop subscriptions at any time on your Subscriber Preferences Page . You will need to use your e-mail address to log in. If you have questions or problems with the subscription service, please contact subscriberhelp.govdelivery.com . This service is provided to you at no charge by U.S. Customs and Border Protection . Privacy Policy | GovDelivery is providing this information on behalf of U.S. Department of Homeland Security, and may not use the information for any other purposes. Powered by Privacy Policy | Cookie Statement | Help

Frequently asked questions

What is CSMS 55845515?

CSMS 55845515 is a U.S. Customs and Border Protection (CBP) Cargo Systems Messaging Service bulletin titled "CBP Provides Guidance on Cybersecurity Best Practices to Increase Supply Chain Resiliency". CSMS bulletins are the operational instructions CBP issues to brokers, importers, and ACE filers covering rate changes, system updates, scope guidance, and other day-to-day customs-operations changes.

When was CSMS 55845515 published?

CBP published CSMS 55845515 on April 10, 2023. The bulletin's instructions are typically operative as of the publication date unless the body specifies a different effective date.

Is the CBP CSMS the legally binding instruction?

Yes — for at-the-border filing and entry collection. CSMS messages translate Commerce's Federal Register determinations into operational CBP instructions that ACE/ACS systems and brokers execute. The Federal Register notice is the underlying legal authority; the CSMS is the operational implementation. Both should be read together when reconciling a rate or scope change.

Learn more

Tandom guides relevant to CBP CSMS messages

Subscribe to and triage CBP CSMS messages

How to subscribe to CBP Cargo Systems Messaging Service and triage the messages that change broker filing behavior, without losing the ones that matter.

Open resource

Real-time alerts when a CSMS message changes a duty rate

Set up alerts when a CBP CSMS message changes a duty rate on an HTS code you depend on. Built for brokers, forwarders, and importer compliance teams.