A curated collection of authoritative, vendor‑neutral cybersecurity resources from government agencies, standards bodies, and trusted organizations.
Introduction
The SDSUG Security Reference Library provides links to authoritative security and cybersecurity resources from government agencies, standards bodies, and industry organizations.
References include guidance on cybersecurity best practices, risk management, compliance, and security awareness. The library prioritizes platform-agnostic, vendor‑neutral, widely recognized, and publicly accessible sources.
Resources are provided for reference and educational use. SDSUG does not guarantee the accuracy or completeness of external content.
How to Use This Library
This reference library is organized by jurisdiction and function to help practitioners quickly locate authoritative cybersecurity resources. Categories progress from state and local government to federal agencies, national strategy, compliance frameworks, training materials, higher education, and industry resources. Each section provides publicly accessible, vendor‑neutral references suitable for professional use, research, and continuing education.
Sections in This Library
- Arizona State & Local Government
- Federal Government
- Department of Homeland Security (DHS)
- National Security Agencies
- National Cybersecurity Policy and Strategy
- Security Compliance and Standards
- Security Awareness and Training Resources
- Higher Education
- Industry and Private Sector Security Resources
Reference Categories
Arizona State and Local Government
Arizona state agencies involved in cybersecurity oversight, public safety, and statewide technology governance.
- Arizona 2-1-1
- Arizona Department of Administration (ADOA)
- Arizona Department of Energy Management
- Arizona Department of Homeland Security
- Arizona Department of Public Safety
- Arizona Governor’s Office
- Arizona Sheriff’s Department
- Enterprise Architecture (EA) – AZ Statewide strategic IT plan
- Statewide Information Security and Privacy Office (SISPO)
Federal Government
United States federal agencies that influence cybersecurity policy, regulation, and national‑level coordination.
Department of Homeland Security (DHS)
United States national DHS programs and resources supporting critical infrastructure protection and cybersecurity readiness.
- Active Shooter Preparedness
- Active Shooter – What You Can Do (IS-907)
- Critical Infrastructure Security
- DHS Daily Open Source Infrastructure Report
- Homeland Security Information Network – Critical Infrastructure (HSIN-CI)
National Security Agencies
Federal agencies responsible for intelligence, national defense, and security operations.
- Central Intelligence Agency (CIA)
- Federal Bureau of Investigation (FBI)
- National Security Agency (NSA)
- Department of Energy (DoE)
National Cybersecurity Policy and Strategy
Foundational U.S. government strategies, directives, and national‑level cybersecurity frameworks.
Security Compliance and Standards
Authoritative frameworks and standards for cybersecurity, risk management, and regulatory compliance.
Security Awareness and Training Resources
Educational materials, tutorials, and awareness programs supporting cybersecurity learning and public safety.
- Computer Security Awareness Materials-Activities
- Consumer Publications – Deter. Detect. Defend. Avoid ID Theft
- CyberCIEGE
- Internet Complaint Center (IC3)
- IronGeek Security Tutorials
- iWar
- Microsoft Security
- Native Intelligence Inc.
- National Security Institute (NSI) Information Security Resources
- SANS Internet Storm Center
- SANS Reading Room
- KnowBe4 Security Awareness Training and Materials
Higher Education
Universities and colleges that contribute to cybersecurity education, workforce development, and research.
- Arizona State University (ASU) IT Computer Security
- University of Advancing Technology
- University of Arizona (U of A) Security
Industry and Private Sector Security Resources
Private‑sector organizations and practitioner‑focused resources widely used across the cybersecurity community.
- Cisco
- Microsoft Security Response Center
- Open Source Security Testing Methodology Manual
- Open Web Application Security Project (OWASP)
- PSA: Business E-Mail Compromise Scams
- PSA: Ransomware
- PSA: Spear Phishing
- SecurityFocus
- SenderBase – Global Email Traffic Monitoring
Suggest a Resource
If you know of a publicly accessible, platform-agnostic, vendor‑neutral resource that would benefit the community, you may submit it through our feedback form. SDSUG reviews all suggestions without attribution or public visibility.
Disclaimer
SDSUG does not endorse specific products or services unless explicitly stated. Resources are provided for informational purposes and do not constitute endorsement or professional advice.
Explore SDSUG
Start Here
Your guided introduction to SDSUG.
Membership
Join SDSUG for trusted peer collaboration and professional networking.
Leadership
Meet the team guiding SDSUG’s direction.
About SDSUG
Our mission, history, and values.
Events & Meetings
Upcoming topics, speakers, and educational sessions.
Sponsors
Organizations supporting SDSUG’s mission and practitioner community.
SDSUG at a Glance
Overview and FAQ.
Safety & Incident Response
Standards, trained officers, and incident‑response protocols.
Site Index
A full directory of SDSUG pages.
Last updated: March 2026