Cyber Mutual Assistance. February 26, 2018
|
|
- Thomas Griffin
- 6 years ago
- Views:
Transcription
1 Cyber Mutual Assistance February 26, 2018
2 Summary of Today Overview of the ESCC Cyber Mutual Assistance Program Who/what is the ESCC? What is CMA? Why a CMA Program? How does it work? What value for Cooperatives? How to become a Member
3 A Few Questions How many of you are adequately staffed to handle all of your day-to-day IT responsibilities? How many of you are adequately staffed to handle your duties in an emergency situation? How many could completely rebuild every workstation in your organization in the timeframe that would be expected?
4 Mutual Assistance
5 Electric Subsector Coordinating Council Senior policy-setting body in the electric sector under the DHS critical infrastructure protection framework Provides a senior-level interface with federal agencies that work with the electric sector CEOs from 30 IOUs, Cooperatives, Municipals & RTO/ISOs AECC CEO Duane Highley serves as co-chair for Cooperative utilities ESCC sponsors initiatives to increase resilience in the electric sector
6 ESCC Initiatives Playbook for major emergencies in our sector Oversight of NERC s Electricity Information-Sharing and Analysis Center (E-ISAC) EMP Task Force, engaged with EPRI Cyber Mutual Assistance (CMA) program Other high-level policy issues
7 Cyber Mutual Assistance A new approach to cyber-related issues Not just reactive, but proactive Legal and operational groundwork done in advance Provides surge capacity for cyber events affecting delivery of essential services Similar in concept to traditional mutual aid programs Yet a VERY different set of challenges
8 Linemen, bucket trucks, chain saws, etc. Similar line construction across the continent Incidents are geographically-bounded Hurricanes Ice Storms Tornadoes Traditional Mutual Aid Some level of advance notice
9 Differences in Cyber Mutual Assistance Servers, workstations, routers, firewalls, EMS/SCADA, AMI/AMR, OMS, etc. Very different configurations from company to company Cyber events are NOT geographically-bounded Little or no advance warning Regulatory issues Am I next? Much to consider
10 Cyber Mutual Assistance Challenges Cyber is a very different animal from storm restoration Transmission and distribution systems are similar from one utility to the next Cyber systems are not Cyber attacks come with no notice Unlike hurricanes and ice storms, which give some warning Cyber issues come with regulatory and compliance issues NERC, HIPAA, PCI, etc.
11 Cyber Mutual Assistance Challenges (cont) Cyber attacks are not geographically-bounded Again, unlike hurricanes and ice storms Can strike multiple locations simultaneously and randomly Am I next? Given the uncertainty, I may be unwilling to release my staff to assist someone else Undoubtedly other issues, as well
12 CMA is entirely voluntary No requirement for utilities to join No requirement for Members to participate Program cannot require Members to provide resources to others CMA provides a solid legal framework for resource sharing to take place How Does it Work? The hard work here has been done
13 Cyber Mutual Assistance (cont) Guiding principles codified in two legal documents A non-disclosure agreement (NDA) ensures protection of information (required for participation in CMA) A boilerplate contract provides terms and conditions for engagement between utilities (voluntary, but useful) Covers travel costs, labor costs, safety, etc. Execute the NDA and your Cooperative is Member Execute the contract to save time in a crisis
14 How Does CMA Work? Several engagement options 1. Coordinate through the CMA Program Office 2. Coordinate through G&T/Statewide (if CMA Members) 3. Contact a CMA peer directly
15 Through CMA Program Office Contact the CMA Program Office at EEI Ask to convene the CMA Coordinators group Discuss your issues and needs with the group Wait for volunteers to step forward Work out contractual details with responders (or use boilerplate contract) Bring them in to get the work done
16 Through a G&T/Statewide Very similar, but in the family If your G&T is a member and is willing to coordinate Contact your G&T and ask to convene CMA Members G&T convenes CMA members in your G&T Discuss your issues and needs with your peers Wait for peers to step forward Work out details with peers (or use boilerplate contract) Bring in your peers to get the work done
17 Directly With Your Peers Contact a peer in the CMA program directly Discuss your issues and needs with your peer Determine their willingness to assist Work out details with peer (or use boilerplate contract) Bring in your peer to get the work done
18 Value of CMA for Cooperatives Cooperatives already provide assistance to each other in times of need always have, always will CMA provides an additional layer of structure and protection for cyber-related incidents NDA protects the information shared Cyber is sensitive business Boilerplate services agreement provides pre-established terms and conditions, if desired
19 Value of CMA for Cooperatives (cont) CMA participants are free to engage each other however they choose There may be hesitance to engage full CMA program Reach out to other Cooperatives first/directly, if preferred Leverage the CMA framework for one-on-one engagement The hard work has already been done Great value to having Cooperatives on the CMA Roster See next slide
20 Value of CMA for Cooperatives (cont) Resources Access to skilled, trusted resources Privacy Only CMA members know other members; information-sharing is protected Protection NDA and default Terms of Service agreement Experience Periodic CMA conference calls and exercises Information-Sharing CMA passes along critical information as it comes available (but won t overwhelm) Perception - Cooperative participation shows that we are serious about cyber security
21 To join CMA See Contact Dave Batz at or Kaitlin Brennan at Mention that their dear friend Robert AECC referred you G&Ts and Statewides: PLEASE encourage your Member Cooperatives to join What Next? We need more Cooperatives participating!
22 Questions? We can connect one-on-one to discuss For more information: Robert McClanahan VP/Chief Technology Officer Arkansas Electric Cooperative Corp (501)
Cyber Mutual Assistance. August 16, 2017
Cyber Mutual Assistance August 16, 2017 Electric Subsector Coordinating Council Senior policy-setting body in the electric sector under the DHS critical infrastructure protection framework Provides a senior-level
More informationElectric Power Industry s Approach to Grid Security
Electric Power Industry s Approach to Grid Security Richard Ward, Director, National Security Policy Edison Electric Institute (EEI) Cybersecurity & Privacy Policy Academy November 2, 2017 San Francisco,
More informationElectricity Sub-Sector Coordinating Council Charter FINAL DISCUSSION DRAFT 7/9/2013
Electricity Sub-Sector Coordinating Council Charter FINAL DISCUSSION DRAFT 7/9/2013 Purpose and Scope The purpose of the Electricity Sub-Sector Coordinating Council (ESCC) is to facilitate and support
More informationGridEx IV Initial Lessons Learned and Resilience Initiatives
GridEx IV Initial Lessons Learned and Resilience Initiatives LeRoy T. Bunyon, MBA, CBCP Sr. Lead Analyst, Business Continuity 2017 GridEx IV GridEx is a NERC-sponsored, North American grid resilience exercise
More informationNGA Governor s Energy Advisors Energy Policy Institute Resiliency Panel
U.S. DEPARTMENT OF ENERGY Infrastructure Security & Energy Restoration Prepare. Respond. Adapt. NGA Governor s Energy Advisors Energy Policy Institute Resiliency Panel Puesh M. Kumar Director, Preparedness
More informationHPH SCC CYBERSECURITY WORKING GROUP
HPH SCC A PRIMER 1 What Is It? The cross sector coordinating body representing one of 16 critical infrastructure sectors identified in Presidential Executive Order (PPD 21) A trust community partnership
More informationElectric Sector Security & Privacy Plans for 2011
Electric Sector Security & Privacy Plans for 2011 Galen Rasche Technical Executive Erfan Ibrahim Technical Executive Ad-Hoc Smart Grid Executive Committee 2011-Feb-10 Contents PDU Cyber Security R&D Portfolio
More informationNational Level Exercise 2018 After-Action Findings
National Level Exercise 2018 After-Action Findings National Level Exercise (NLE) 2018 examined the ability of all levels of government, private industry, and nongovernmental organizations to protect against,
More informationMember of the County or municipal emergency management organization
EMERGENCY OPERATIONS PLAN SUUPPORT ANNEX B PRIVATE-SECTOR COORDINATION Coordinating Agency: Cooperating Agencies: Chatham Emergency Management Agency All Introduction Purpose This annex describes the policies,
More informationBusiness Continuity Planning
Business Continuity Planning The Unexpected Happens Be Ready Copyright -Business Survival Partners, llc. 2011 - All Rights Reserved www.survivalpartners.biz RISK 2 Risks to National Security A secure and
More informationMedical Device Cybersecurity: FDA Perspective
Medical Device Cybersecurity: FDA Perspective Suzanne B. Schwartz MD, MBA Associate Director for Science and Strategic Partnerships Office of the Center Director (OCD) Center for Devices and Radiological
More informationISAO SO Product Outline
Draft Document Request For Comment ISAO SO 2016 v0.2 ISAO Standards Organization Dr. Greg White, Executive Director Rick Lipsey, Deputy Director May 2, 2016 Copyright 2016, ISAO SO (Information Sharing
More informationSecurity and Privacy Governance Program Guidelines
Security and Privacy Governance Program Guidelines Effective Security and Privacy Programs start with attention to Governance. Governance refers to the roles and responsibilities that are established by
More informationNATIONAL DEFENSE INDUSTRIAL ASSOCIATION Homeland Security Symposium
NATIONAL DEFENSE INDUSTRIAL ASSOCIATION Homeland Security Symposium Securing Cyber Space & America s Cyber Assets: Threats, Strategies & Opportunities September 10, 2009, Crystal Gateway Marriott, Arlington,
More informationSTATEMENT OF SCOTT I. AARONSON VICE PRESIDENT, SECURITY AND PREPAREDNESS EDISON ELECTRIC INSTITUTE BEFORE THE U.S. SENATE HOMELAND SECURITY AND
STATEMENT OF SCOTT I. AARONSON VICE PRESIDENT, SECURITY AND PREPAREDNESS EDISON ELECTRIC INSTITUTE BEFORE THE U.S. SENATE HOMELAND SECURITY AND GOVERNMENTAL AFFAIRS COMMITTEE PERSPECTIVES ON PROTECTING
More informationTestimony of Ms. Bobbi Kilmer President and CEO of the Claverack Rural Electric Cooperative to the Committee on Transportation and Infrastructure
Testimony of Ms. Bobbi Kilmer President and CEO of the Claverack Rural Electric Cooperative to the Committee on Transportation and Infrastructure Subcommittee on Economic Development, Public Buildings
More informationTechnical Conference on Critical Infrastructure Protection Supply Chain Risk Management
Technical Conference on Critical Infrastructure Protection Supply Chain Risk Management Remarks of Marcus Sachs, Senior Vice President and the Chief Security Officer North American Electric Reliability
More informationCyber Risks in the Boardroom Conference
Cyber Risks in the Boardroom Conference Managing Business, Legal and Reputational Risks Perspectives for Directors and Executive Officers Preparing Your Company to Identify, Mitigate and Respond to Risks
More informationFERC Reliability Technical Conference Panel III: ERO Performance and Initiatives ESCC and the ES-ISAC
: ERO Performance and Initiatives June 4, 2015 Chairman Bay, Commissioners, and fellow panelists, I appreciate the opportunity to address the topics identified for the third panel of today s important
More informationBEFORE THE U.S. HOUSE OF REPRESENTATIVES COMMITTEE ON ENERGY AND COMMERCE SUBCOMMITTEE ON ENERGY
STATEMENT OF SCOTT I. AARONSON EXECUTIVE DIRECTOR, SECURITY AND BUSINESS CONTINUITY EDISON ELECTRIC INSTITUTE AND SECRETARIAT MEMBER ELECTRICITY SUBSECTOR COORDINATING COUNCIL BEFORE THE U.S. HOUSE OF
More information2 ESF 2 Communications
2 ESF 2 Communications THIS PAGE LEFT BLANK INTENTIONALLY Table of Contents 1 Introduction... 1 1.1 Purpose and Scope... 1 1.2 Relationship to Other ESF Annexes... 1 1.3 Policies and Agreements... 1 2
More informationEARTH Ex 2017 Middle Planning Conference
EARTH Ex 2017 Middle Planning Conference 20 April 2017 Emergency All-sector Response to Transnational Hazards Exercise 23 August 2017 1 EARTH Ex 2017 MPC Sector Objectives Review EARTH Ex Plan, Concepts
More informationNATIONAL ELECTRIC GRID SECURITY AND RESILIENCE ACTION PLAN
NATIONAL ELECTRIC GRID SECURITY AND RESILIENCE ACTION PLAN Product of the Executive Office of the President DECEMBER 2016 Table of Contents Introduction................................... 1 Structure
More informationGrid Security & NERC
Grid Security & NERC Janet Sena, Senior Vice President, Policy and External Affairs Southern States Energy Board 2017 Associate Members Winter Meeting February 27, 2017 Recent NERC History Energy Policy
More informationStandards. Howard Gugel, Director of Standards Board of Trustees Meeting February 11, 2016
Standards Howard Gugel, Director of Standards Board of Trustees Meeting February 11, 2016 Balancing Authority Reliability-based Controls Reliability Benefits Data requirements for Balancing Authority (BA)
More informationGreg Garcia President, Garcia Cyber Partners Former Assistant Secretary for Cyber Security and Communications, U.S. Department of Homeland Security
1 Greg Garcia President, Garcia Cyber Partners Former Assistant Secretary for Cyber Security and Communications, U.S. Department of Homeland Security 2 Government Services 3 Business Education Social CYBERSPACE
More informationCyber Risk Program Maturity Assessment UNDERSTAND AND MANAGE YOUR ORGANIZATION S CYBER RISK.
Cyber Risk Program Maturity Assessment UNDERSTAND AND MANAGE YOUR ORGANIZATION S CYBER RISK. In today s escalating cyber risk environment, you need to make sure you re focused on the right priorities by
More informationMississippi Emergency Management Agency. Shawn Wise. Office Of Preparedness
Mississippi Emergency Management Agency Shawn Wise Mississippi Emergency Management Agency Office Of Preparedness All-Hazard Agency MEMA s Mission MEMA is a Coordinating Agency. State/Local Partnerships
More informationCybersecurity Overview
Cybersecurity Overview DLA Energy Worldwide Energy Conference April 12, 2017 1 Enterprise Risk Management Risk Based: o Use of a risk-based approach for cyber threats with a focus on critical systems where
More informationDecember 10, Statement of the Securities Industry and Financial Markets Association. Senate Committee on Banking, Housing, and Urban Development
December 10, 2014 Statement of the Securities Industry and Financial Markets Association Senate Committee on Banking, Housing, and Urban Development Hearing Entitled Cybersecurity: Enhancing Coordination
More informationNERC Staff Organization Chart Budget 2018
NERC Staff Organization Chart Budget 2018 President and CEO Associate Director to the Office of the CEO Senior Vice President and Chief Reliability Senior Vice President, General Counsel and Corporate
More informationDOE s Roles and Responsibilities for Energy Sector Cybersecurity
Written Testimony of Under Secretary Mark Menezes U.S. Department of Energy Before the Subcommittee on Energy Committee on Energy and Commerce U.S. House of Representatives March 14, 2018 Introduction
More informationSecurity Director - VisionFund International
Security Director - VisionFund International Location: [Europe & the Middle East] [United Kingdom] Category: Security Job Type: Open-ended, Full-time *Preferred location: United Kingdom/Eastern Time Zone
More informationCloud Computing Risks & Reality. Sandra Liepkalns, CRISC
Cloud Computing Risks & Reality Sandra Liepkalns, CRISC sandra.liepkalns@netrus.com What is Cloud Security The quality or state of being secure to be free from danger & minimize risk To be protected from
More informationChapter X Security Performance Metrics
DRAFT February 19, 15 BES Security s Working Group Page 1 of 7 Chapter X Security Performance s 1 3 3 3 3 0 Background The State of Reliability 1 report noted that the NERC PAS was collaborating with the
More informationDr. Emadeldin Helmy Cyber Risk & Resilience Bus. Continuity Exec. Director, NTRA. The African Internet Governance Forum - AfIGF Dec 2017, Egypt
Dr. Emadeldin Helmy Cyber Risk & Resilience Bus. Continuity Exec. Director, NTRA The African Internet Governance Forum - AfIGF2017 5 Dec 2017, Egypt Agenda Why? Threats Traditional security? What to secure?
More informationLeading the Digital Transformation from the Centre of Government
37th Meeting of Senior Officials from Centres of Government Leading the Digital Transformation from the Centre of Government Dublin, Ireland, 8-9 November 2018 Agenda 2 GOV/PGC/MPM/A(2018)1/REV1 19.00
More informationTelecommunications Network Reliability
Telecommunications Network Reliability Office of Telecommunications NYS Department of Public Service Background Major Outages in 1999, 2000, and 2001 9/11 Telecommunications Severely Disrupted Infrastructure
More informationJim Brenton Regional Security Coordinator ERCOT Electric Reliability Council of Texas
Jim Brenton Regional Security Coordinator ERCOT Electric Reliability Council of Texas Facts expressed in this presentation are Facts Opinions express in this presentation are solely my own The voices I
More informationAppendix 3 Disaster Recovery Plan
Appendix 3 Disaster Recovery Plan DRAFT March 5, 2007 Revision XX Qwest Government Services, Inc. 4250 North Fairfax Drive Arlington, VA 22203 A3-i RFP: TQC-JTB-05-0002 March 5, 2007 REVISION HISTORY Revision
More informationEPRO. Electric Infrastructure Protection Initiative EPRO BLACK SKY SYSTEMS ENGINEERING PROCESS
EPRO Electric Infrastructure Protection Initiative EPRO BLACK SKY SYSTEMS ENGINEERING PROCESS EPRO BLACK SKY SYSTEMS ENGINEERING PROCESS The Role of Systems Engineering in Addressing Black Sky Hazards
More informationAddressing Dynamic Threats to the Electric Power Grid Through Resilience
Addressing Dynamic Threats to the Electric Power Grid Through Resilience NOVEMBER 2014 INTRODUCTION The U.S. electric power grid is an interconnected system made up of power generation, transmission, and
More informationAchieving Cyber-Readiness through Information Sharing Analysis Organizations (ISAOs)
Achieving Cyber-Readiness through Information Sharing Analysis Organizations (ISAOs) Florida Hospital Association Welcome! John Wilgis Director, Emergency Management Services Florida Hospital Association
More informationAd Hoc Smart Grid Executive Committee. February 10, 2011 New Orleans, LA
Ad Hoc Smart Grid Executive Committee February 10, 2011 New Orleans, LA Agenda Time Topic and Location Lead 3:00 3:10p Welcome & Introductions George Bjelovuk, AEP 3:10 3:40p Regulatory Trends for Cyber
More informationHIPAA Security and Privacy Policies & Procedures
Component of HIPAA Security Policy and Procedures Templates (Updated for HITECH) Total Cost: $495 Our HIPAA Security policy and procedures template suite have 71 policies and will save you at least 400
More informationNERC Staff Organization Chart Budget 2019
NERC Staff Organization Chart Budget 2019 President and CEO Associate Director to the Office of the CEO Senior Vice President and Chief Reliability Senior Vice President, General Counsel and Corporate
More informationTestimony. Christopher Krebs Director Cybersecurity and Infrastructure Security Agency U.S. Department of Homeland Security FOR A HEARING ON
Testimony Christopher Krebs Director Cybersecurity and Infrastructure Security Agency U.S. Department of Homeland Security FOR A HEARING ON Defending Our Democracy: Building Partnerships to Protect America
More information2016 Nationwide Cyber Security Review: Summary Report. Nationwide Cyber Security Review: Summary Report
Nationwide Cyber Security Review: Summary Report Nationwide Cyber Security Review: Summary Report ii Nationwide Cyber Security Review: Summary Report Acknowledgments The Multi-State Information Sharing
More informationAdvanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018
Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018 The Homeland Security Systems Engineering and Development Institute (HSSEDI ) is a trademark of the U.S. Department of Homeland
More informationMANUAL OF UNIVERSITY POLICIES PROCEDURES AND GUIDELINES. Applies to: faculty staff students student employees visitors contractors
Page 1 of 6 Applies to: faculty staff students student employees visitors contractors Effective Date of This Revision: June 1, 2018 Contact for More Information: HIPAA Privacy Officer Board Policy Administrative
More informationIndustry role moving forward
Industry role moving forward Discussion with National Research Council, Workshop on the Resiliency of the Electric Power Delivery System in Response to Terrorism and Natural Disasters February 27-28, 2013
More informationInformed Consent and the Consent Form
Informed Consent and the Consent Form What is informed consent? What does the process look like? Who can obtain consent? Where can I find more information? Consent Form Informed Consent They are NOT the
More informationNERC Staff Organization Chart Budget 2019
NERC Staff Organization Chart Budget 2019 President and CEO Associate Director to the Office of the CEO Senior Vice President and Chief Reliability Officer Senior Vice President, General Counsel and Corporate
More informationEmergency Support Function #2 Communications Annex INTRODUCTION. Purpose. Scope. ESF Coordinator: Support Agencies: Primary Agencies:
ESF Coordinator: Homeland Security/National Protection and Programs/Cybersecurity and Communications Primary Agencies: Homeland Security/National Protection and Programs/Cybersecurity and Communications
More informationSTRATEGY ATIONAL. National Strategy. for Critical Infrastructure. Government
ATIONAL STRATEGY National Strategy for Critical Infrastructure Government Her Majesty the Queen in Right of Canada, 2009 Cat. No.: PS4-65/2009E-PDF ISBN: 978-1-100-11248-0 Printed in Canada Table of contents
More informationHistory of NERC December 2012
History of NERC December 2012 Timeline Date 1962-1963 November 9, 1965 1967 1967-1968 June 1, 1968 July 13-14, 1977 1979 1980 Description Industry creates an informal, voluntary organization of operating
More informationPrivate Sector Clearance Program (PSCP) Webinar
Private Sector Clearance Program (PSCP) Webinar Critical Infrastructure Protection Committee November 18, 2014 Nathan Mitchell, ESCC Clearance Liaison Agenda History NERC CIPC Private Sector Clearance
More informationTable of Contents. Sample
TABLE OF CONTENTS... 1 CHAPTER 1 INTRODUCTION... 4 1.1 GOALS AND OBJECTIVES... 5 1.2 REQUIRED REVIEW... 5 1.3 APPLICABILITY... 5 1.4 ROLES AND RESPONSIBILITIES SENIOR MANAGEMENT AND BOARD OF DIRECTORS...
More informationEARTH Ex Exercise Webinar Multi-Sector Exercise Opportunity. July 19, pm ET
EARTH Ex Exercise Webinar Multi-Sector Exercise Opportunity July 19, 2017 1-2 pm ET Agenda Introduction Overview of the NISC EARTH Ex 2017: Multi-Sector Exercise Opportunity Battle Rhythm Manager Q&A Quiz
More informationNW NATURAL CYBER SECURITY 2016.JUNE.16
NW NATURAL CYBER SECURITY 2016.JUNE.16 ADOPTED CYBER SECURITY FRAMEWORKS CYBER SECURITY TESTING SCADA TRANSPORT SECURITY AID AGREEMENTS CONCLUSION QUESTIONS ADOPTED CYBER SECURITY FRAMEWORKS THE FOLLOWING
More informationNERC Staff Organization Chart Budget 2017
NERC Staff Organization Chart Budget 2017 President and CEO Administrative Associate Director to the Office of the CEO Senior Vice President and Chief Reliability Senior Vice President, General Counsel
More informationIntroduction to Business continuity Planning
Week - 06 Introduction to Business continuity Planning 1 Introduction The purpose of this lecture is to give an overview of what is Business Continuity Planning and provide some guidance and resources
More informationGrid Security & NERC. Council of State Governments. Janet Sena, Senior Vice President, Policy and External Affairs September 22, 2016
Grid Security & NERC Council of State Governments The Future of American Electricity Policy Academy Janet Sena, Senior Vice President, Policy and External Affairs September 22, 2016 1965 Northeast blackout
More informationUNITED STATES OF AMERICA BEFORE THE FEDERAL ENERGY REGULATORY COMMISSION ) ) ) COMMENTS OF THE LARGE PUBLIC POWER COUNCIL
UNITED STATES OF AMERICA BEFORE THE FEDERAL ENERGY REGULATORY COMMISSION Cyber Security Incident Reporting Reliability Standards ) ) ) Docket Nos. RM18-2-000 AD17-9-000 COMMENTS OF THE LARGE PUBLIC POWER
More informationNovember 14, Emergency Management and Hurricane Irma. Florida Human Resources People and Strategy (FLHRPS)
November 14, 2017 Emergency Management and Hurricane Irma Florida Human Resources People and Strategy (FLHRPS) 1 Agenda Hurricane Irma recap Dianne Merrill Emergency Management Process Susan Mueller Lessons
More informationNERC Staff Organization Chart Budget 2017
NERC Staff Organization Chart Budget 2017 President and CEO Administrative Associate Director to the Office of the CEO Senior Vice President and Chief Reliability Senior Vice President, General Counsel
More informationSection 1 Metrics: Community Adoption
FY07 NIMS Compliance Metrics: Local/Tribal Section 1 Metrics: Community Adoption Compliance Requirement: Adopt NIMS at the community level for all government departments and agencies; as well as promote
More informationDHS Cybersecurity: Services for State and Local Officials. February 2017
DHS Cybersecurity: Services for State and Local Officials February 2017 Department of Established in March of 2003 and combined 22 different Federal departments and agencies into a unified, integrated
More informationBusiness Continuity: How to Keep City Departments in Business after a Disaster
Business Continuity: How to Keep City Departments in Business after a Disaster Shannon Spence, PE Red Oak Consulting, an ARCADIS group Agenda Security, Resilience and All Hazards The Hazards Cycle and
More informationIndustry Webinar. Project Modifications to CIP-008 Cyber Security Incident Reporting. November 16, 2018
Industry Webinar Project 2018-02 Modifications to CIP-008 Cyber Security Incident Reporting November 16, 2018 Agenda Presenters Standard Drafting Team NERC Staff - Alison Oswald Administrative Items Project
More informationInformation sharing in the EU policy on NIS & CIIP. Andrea Servida European Commission DG INFSO-A3
Information sharing in the EU policy on NIS & CIIP Andrea Servida European Commission DG INFSO-A3 Andrea.Servida@ec.europa.eu COM(2006) 251 - Towards a secure Information Society DIALOGUE structured and
More informationWalmart Resiliency NCEM ECU Hurricane Conference May 2016
NCEM ECU Hurricane Conference May 2016 Emergency Management Guiding Principles Taking Care of Our Associates Taking Care of Our Operations Taking Care of Our Communities 2 Why Preparedness Matters to Walmart
More informationTECHLAW AUSTRALIA. Update on cyber security and data protection. Thursday, 22 June Thursday, 22 June
TECHLAW AUSTRALIA Update on cyber security and data protection Thursday, 22 June 2017 www.dlapiper.com Thursday, 22 June 2017 0 Overview Current threat environment why now? What is required/expected? Scenarios:
More informationChapter X Security Performance Metrics
Chapter X Security Performance Metrics Page 1 of 10 Chapter X Security Performance Metrics Background For many years now, NERC and the electricity industry have taken actions to address cyber and physical
More informationCritical Infrastructure Partnership
Critical Infrastructure Partnership Overview Chris Boyer AVP Global Public Policy December 11, 2017 2016 AT&T Intellectual Property. All rights reserved. AT&T, Globe logo, Mobilizing Your World and DIRECTV
More information2013 STRATEGIC PLANNING SCHEDULE
2013 STRATEGIC PLANNING SCHEDULE Overall Agency Priorities 1. Prepare for the 2013 Hurricane Conference 2. Coordinate the Adoption and Implementation of the Employee State of Emergency Work Assignment
More informationNational Infrastructure Resilience
National Infrastructure Resilience James Kish Electric Infrastructure Security Council (EIS C) California Utilities Emergency Association June 22, 2017 jim.kish@eiscouncil.org 1 Discussion Outline What
More informationPanel II: Are We Prepared?
Panel II: Are We Prepared? Light Light & Power Power A Northeast Utilities Company Emergency Preparedness & Response March 13, 2013 Energy, Environment and Economic Development Conference Douglas S. McCracken
More informationNERC Critical Infrastructure Protection Committee (CIPC) Highlights
NERC Critical Infrastructure Protection Committee (CIPC) Highlights Mike Kraft, Basin Electric Power Cooperative MRO Board of Directors Meeting March 17, 2016 Midwest Reliability Organization Standards
More informationFlorida Power & Light Company Hurricane Response Update. Eric Silagy President and CEO Florida Power & Light Company
Florida Power & Light Company Hurricane Response Update Eric Silagy President and CEO Florida Power & Light Company 35 counties Serving more than half of Florida 4.9 million customer accounts Majority
More informationFederal Information Sharing Resources for Small and Midsize Businesses
Federal Information Sharing Resources for Small and Midsize Businesses Hosted by the Department of Homeland Security s (DHS) Critical Infrastructure Cyber Community (C3) Voluntary Program October 31, 2017
More informationThe NIST Cybersecurity Framework
The NIST Cybersecurity Framework U.S. German Standards Panel 2018 April 10, 2018 Adam.Sedgewick@nist.gov National Institute of Standards and Technology About NIST Agency of U.S. Department of Commerce
More informationEPRI Research Overview IT/Security Focus. Power Delivery & Energy Utilization Sector From Generator Bus Bar to End Use
EPRI Research Overview IT/Security Focus November 29, 2012 Mark McGranaghan VP, Power Delivery and Utilization Power Delivery & Energy Utilization Sector From Generator Bus Bar to End Use Transmission
More informationMississippi Emergency Management Agency. Brittany Hilderbrand & Kamika Durr. Office Of Preparedness
Mississippi Emergency Management Agency Brittany Hilderbrand & Kamika Durr Mississippi Emergency Management Agency Office Of Preparedness All-Hazard Agency MEMA s Mission MEMA is a Coordinating Agency.
More informationChapter X Security Performance Metrics
Chapter X Security Performance Metrics Page 1 of 9 Chapter X Security Performance Metrics Background For the past two years, the State of Reliability report has included a chapter for security performance
More informationEnergy Assurance State Examples and Regional Markets Jeffrey R. Pillon, Director of Energy Assurance National Association of State Energy Officials
+ NGA State Learning Lab on Energy Assurance Coordination May 13-15, 2015 Trenton, New Jersey Energy Assurance State Examples and Regional Markets Jeffrey R. Pillon, Director of Energy Assurance National
More informationDisasters & The Disaster Response Inspector
Disasters & The Disaster Presenter: William Bracken Tuesday, September 12, 2017 8:00 AM - 9:30 AM Disaster Planning and the Disaster Response Inspector Disaster Planning and the Disaster Course Objectives
More informationGlobal Security Advisor
Global Security Advisor Location: [North America] [United States] Category: Security *Preferred location: USA. Other locations will be considered globally where WVI is registered to operate. PURPOSE OF
More informationMassMutual Business Continuity Disclosure Statement
MassMutual Business Continuity Disclosure Statement Overview Resiliency is a high priority at Massachusetts Mutual Life Insurance Company ( MassMutual or the Company ). To that end, significant investments
More informationPresentation to the ITU on the Q-CERT Incident Management Team. Ian M Dowdeswell Incident Manager, Q-CERT
Presentation to the ITU on the Q-CERT Incident Management Team Ian M Dowdeswell Incident Manager, Q-CERT 2 Q-CERT Mission The Mission of Q-CERT is to be a world-class center of excellence providing expert
More informationPONEMON INSTITUTE RESEARCH REPORT 2018 STUDY ON GLOBAL MEGATRENDS IN CYBERSECURITY
PONEMON INSTITUTE RESEARCH REPORT 2018 STUDY ON GLOBAL MEGATRENDS IN CYBERSECURITY Benchmark research sponsored by Raytheon. Independently conducted by Ponemon Institute LLC. February 2018 2018 Study on
More informationCYBERSECURITY TRAINING EXERCISE KMU TRAINING CENTER NOVEMBER 7, 2017
CYBERSECURITY TRAINING EXERCISE KMU TRAINING CENTER NOVEMBER 7, 2017 Sponsored by: Kansas Municipal Utilities Kansas Municipal Energy Agency Kansas Power Pool CYBERSECURITY TRAINING EXERCISE DATE November
More informationEmergency Management Response and Recovery. Mark Merritt, President September 2011
Emergency Management Response and Recovery Mark Merritt, President September 2011 Evolution of Response and Recovery Emergency Management Pendulum Hurricane Andrew August 24, 1992 9/11 Terrorist Attacks
More informationBalancing Compliance and Operational Security Demands. Nov 2015 Steve Winterfeld
Balancing Compliance and Operational Security Demands Nov 2015 Steve Winterfeld What is more important? Compliance with laws / regulations Following industry best practices Developing a operational practice
More informationSystem Chief Business Officer - B. J. Crain The Texas A&M University System Position Description--January 13, 2010
System Chief Business Officer - B. J. Crain Position Description--January 13, 2010 Dual reporting to the Chancellor and President of Texas A&M University with consideration to an executive oversight committee*
More informationSeptember 2010 Version 0.9
TERMS OF REFERENCE September 2010 Version 0.9 Table of Contents Section 1. Purpose... 1 Section 2. Background... 1 Section 3. Scope... 2 Goals and Objectives... 2 Project Deliverables... 3 Deliverables
More informationUNITED STATES OF AMERICA BEFORE THE FEDERAL ENERGY REGULATORY COMMISSION ) )
UNITED STATES OF AMERICA BEFORE THE FEDERAL ENERGY REGULATORY COMMISSION Cyber Security Incident Reporting Reliability Standards ) ) Docket Nos. RM18-2-000 AD17-9-000 COMMENTS OF THE NORTH AMERICAN ELECTRIC
More informationMaintaining Resiliency Within the Defense Industrial Base Through Preparedness Response and Recovery
Maintaining Resiliency Within the Defense Industrial Base Through Preparedness Response and Recovery Dave Komendat Chief Security Officer The Boeing Company What We Do Today Design, assemble and support
More informationWhat Does the Future Look Like for Business Continuity Professionals?
What Does the Future Look Like for Business Continuity Professionals? October 26, 2016 Brian Zawada, FBCI President, US Chapter of the Business Continuity Institute Agenda and Objectives Change Standards
More informationCOMED S CATASTROPHIC STORM PLANS
COMED S CATASTROPHIC STORM PLANS MEA Electric Operations Conference May 13, 2015 Kimberly A. Smith Director, Emergency Preparedness, Distribution System Operations MEET THE EXELON UTILITIES 2 Chicago,
More information