The Cybersecurity and Infrastructure Security Agency (CISA) is the operational lead for Federal cybersecurity, responsible for coordinating cyber incident response and mitigation. In December 2020, CISA issued an emergency directive about an advanced cyberattack that had caused a breach of SolarWinds software and Federal computing networks. This review was conducted to determine CISA’s ability to detect and mitigate risks from major cyberattacks based on lessons learned after the SolarWinds breach. Four recommendations are made to address CISA’s resource needs and improve technology to enhance cyber detection and mitigation.