Briefing to National Association of Regulatory Utility Commissioners

Similar documents
ISAO SO Product Outline

U.S. Department of Homeland Security Office of Cybersecurity & Communications

Private Sector Clearance Program (PSCP) Webinar

The Office of Infrastructure Protection

California Cybersecurity Integration Center (Cal-CSIC)

DHS Cybersecurity: Services for State and Local Officials. February 2017

Water Information Sharing and Analysis Center

Greg Garcia President, Garcia Cyber Partners Former Assistant Secretary for Cyber Security and Communications, U.S. Department of Homeland Security

Testimony. Christopher Krebs Director Cybersecurity and Infrastructure Security Agency U.S. Department of Homeland Security FOR A HEARING ON

PIPELINE SECURITY An Overview of TSA Programs

FEMA Region III Cyber Security Program

Federal Information Sharing Resources for Small and Midsize Businesses

2 nd Cybersecurity Workshop Test and Evaluation to Meet the Advanced Persistent Threat

Department of Homeland Security Updates

Critical Infrastructure Sectors and DHS ICS CERT Overview

DHS Election Task Force Updates. Geoff Hale, Elections Task Force

DHS Cybersecurity. Election Infrastructure as Critical Infrastructure. June 2017

THE WHITE HOUSE. Office of the Press Secretary. EMBARGOED UNTIL DELIVERY OF THE PRESIDENT'S February 12, 2013 STATE OF THE UNION ADDRESS

Standards. Howard Gugel, Director of Standards Board of Trustees Meeting February 11, 2016

Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013

Industry role moving forward

Information Technology Information Sharing and Analysis Center. First Symposium Barcelona, Spain Feb. 2, 2011

The Office of Infrastructure Protection

Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018

Welcome Mike Kraft, MRO SAC Member

Emergency Support Function #2 Communications Annex INTRODUCTION. Purpose. Scope. ESF Coordinator: Support Agencies: Primary Agencies:

The Office of Infrastructure Protection

Information Collection Request: The Department of Homeland. Security, Stakeholder Engagement and Cyber Infrastructure

The Office of Infrastructure Protection

Electricity Sub-Sector Coordinating Council Charter FINAL DISCUSSION DRAFT 7/9/2013

Global Resilience Federation Trust. Collaboration. Community. Cindy Donaldson President, Global Resilience Federation October 2017

ICBA Summary of FFIEC Cybersecurity Assessment Tool (May 2017 Update)

Election Infrastructure Security: The How and Why of It

NATIONAL DEFENSE INDUSTRIAL ASSOCIATION Homeland Security Symposium

The Role of the ISACs in Critical Infrastructure Resilience Presented by Steve Lines Executive Director Defense Industrial Base Information Sharing

Understanding Holistic Effects of Cyber Events on Critical Infrastructure

Region Snapshot Regions I and II

Achieving Cyber-Readiness through Information Sharing Analysis Organizations (ISAOs)

Cybersecurity Overview

HPH SCC CYBERSECURITY WORKING GROUP

Cyber Security & Homeland Security:

Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure

2016 Nationwide Cyber Security Review: Summary Report. Nationwide Cyber Security Review: Summary Report

NGA Governor s Energy Advisors Energy Policy Institute Resiliency Panel

Good morning, Chairman Harman, Ranking Member Reichert, and Members of

The National Network of Fusion Center: Where We Have Been and Where We are Going

2014 Sector-Specific Plan Guidance. Guide for Developing a Sector-Specific Plan under NIPP 2013 August 2014

Cybersecurity Presidential Policy Directive Frequently Asked Questions. kpmg.com

79th OREGON LEGISLATIVE ASSEMBLY Regular Session. Senate Bill 90

GPS Vulnerability and DHS Mitigation Efforts. David Wulf Acting Deputy Assistant Secretary Infrastructure Protection Department of Homeland Security

ICS-CERT Year in Review. Industrial Control Systems Cyber Emergency Response Team

Louisiana - State Analytical & Fusion Exchange (LA-SAFE)

Sharing of Information & Intelligence on the Importation & Transportation of Food

NIEM in Action: Roadmap to Successful Standards- Based Information- Sharing

Critical Infrastructure Mission Implementation by State, Local, Tribal, and Territorial Agencies and Public-Private Partnerships.

Needs and Challenges Funding assistance Training Partnership capabilities and sustainment. Implement Risk Management

Cybersecurity A Regulatory Perspective Sara Nielsen IT Manager Federal Reserve Bank of Kansas City

Critical Infrastructure Partnership

Today s cyber threat landscape is evolving at a rate that is extremely aggressive,

Jim Brenton Regional Security Coordinator ERCOT Electric Reliability Council of Texas

Compliance Monitoring and Enforcement Program Technology Project Update

Federal Civilian Executive branch State, Local, Tribal, Territorial government (SLTT) Private Sector (PS) Unclassified / Business Networks

American Association of Port Authorities. Navigating the Cyber Domain. Homeland Security UNCLASSIFIED

June 5, 2018 Independence, Ohio

National Cyber Security Strategy - Qatar. Michael Lewis, Deputy Director

December 10, Statement of the Securities Industry and Financial Markets Association. Senate Committee on Banking, Housing, and Urban Development

Working Draft Supplemental Tool: Connecting to the NICC and NCCIC Draft October 21, 2013

The Role of ISACs in Protecting Critical Infrastructure. Denise Anderson Chair National Council of ISACs. Agenda

MDISS Webinar. Medical Device Vulnerability Intelligence Program for Evaluation and Response (MD-VIPER)

TERRORISM LIAISON OFFICER OUTREACH PROGRAM - (TLOOP)

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

Mitigation Framework Leadership Group (MitFLG) Charter DRAFT

NERC Staff Organization Chart

CYBERSECURITY FOR STARTUPS AND SMALL BUSINESSES OVERVIEW OF CYBERSECURITY FRAMEWORKS

Outreach and Partnerships for Promoting and Facilitating Private Sector Emergency Preparedness

NATIONAL ELECTRIC GRID SECURITY AND RESILIENCE ACTION PLAN

Region Snapshot Region IV

South Dakota Utah Wyoming Needs and Challenges Funding assistance Training Federal program enhancements Exercises

Technical Conference on Critical Infrastructure Protection Supply Chain Risk Management

RICK RAMPOLLA WHO WE ARE. ITDM Security Operations, Publix Super Markets Inc.

Why you should adopt the NIST Cybersecurity Framework

Grid Security & NERC

FERC Reliability Technical Conference Panel III: ERO Performance and Initiatives ESCC and the ES-ISAC

Panelists. Moderator: Dr. John H. Saunders, MITRE Corporation

Personnel Security Clearance Task Force (PSCTF) Report Discussion DRAFT

Grid Security & NERC. Council of State Governments. Janet Sena, Senior Vice President, Policy and External Affairs September 22, 2016

RCISC_11014 Prospect Brochure_V3.indd 1

The National Medical Device Information Sharing & Analysis Organization (MD-ISAO) Initiative Session 2, February 19, 2017 Moderator: Suzanne

Standing Together for Financial Industry Resilience Quantum Dawn 3 After-Action Report. November 19, 2015

Stephanie Zierten Associate Counsel Federal Reserve Bank of Boston

Dr. Emadeldin Helmy Cyber Risk & Resilience Bus. Continuity Exec. Director, NTRA. The African Internet Governance Forum - AfIGF Dec 2017, Egypt

TSA/FTA Security and Emergency Management Action Items for Transit Agencies

Cybersecurity and Data Protection Developments

POSTMARKET MANAGEMENT OF CYBERSECURITY IN MEDICAL DEVICES FINAL GUIDANCE MARCH 29, TH ANNUAL MEDICAL DEVICE QUALITY CONGRESS

DHS Emergency Services Sector Presents Tools and Resources for First Responders. June 1, pm ET

STRENGTHENING THE CYBERSECURITY OF FEDERAL NETWORKS AND CRITICAL INFRASTRUCTURE

Overview of the Federal Interagency Operational Plans

National Preparedness System (NPS) Kathleen Fox, Acting Assistant Administrator National Preparedness Directorate, FEMA April 27, 2015

Building Privacy into Cyber Threat Information Sharing Cyber Security Symposium Securing the Public Trust

Office of Infrastructure Protection Overview

Transcription:

Critical Infrastructure Threat Information Sharing Framework Briefing to National Association of Regulatory Utility Commissioners February 12, 2017

The Info Sharing Problem 2

Because I m a Government Employee Guidance Documents National Infrastructure Protection Plan 2013: Partnering for Critical Infrastructure Security and Resilience Share actionable and relevant information across the critical infrastructure community to build awareness and enable risk-informed decision making National Strategy for Information Sharing and Safeguarding Purpose and Scope describe the current processes used to facilitate the flow of threat information between and among all entities involved in the critical infrastructure security and resilience mission, and provide an overview of the key threat information-sharing entities which facilitate this process. limited to threat information sharing pertaining to manmade threats, including both cyber and physical threats, to critical infrastructure. 3

Approach 4

How Threat Information Sharing Is Done 5

Key Threat Information Sharing Entities 6

7

8

Case Studies 9

Information Flow Maps 10

Additional Case Studies 11

Some Observations Role of informal networks Balance between too much and not enough is difficult ISAO EO is very helpful needs to include all hazards Challenge of classified information Disconnect between physical and cyber security staff 12

Questions? Brian Scully Director, Strategy and Policy Programs DHS/NPPD/Office of Infrastructure Protection Brian.scully1@hq.dhs.gov Find the Framework online: https://www.dhs.gov/publication/ci-threat-info-sharing-framework 13

Communications Sector Information Sharing Information Sharing is not new to Communication Service Providers Information Sharing by network service providers is deep and systemic, but not fully recognized. Current Efforts to Characterize and Catalogue major Venues/Opportunities for Info- Sharing CSRIC V Working Group 5 Information Sharing https://www.fcc.gov/about-fcc/advisory-committees/communications-securityreliability-and-interoperability Primary Venue for Collaboration and Information Sharing: DHS National Coordinating Center / Communications Information Sharing and Analysis Center (ISAC) Public/Private Coordination Point for Physical AND Cyber Events 15

Info-Sharing Modalities Informal Formal Phone Call E-mail Teleconference Professional Membership Working Group Professional Conference Webinar Technical Liaison Technical Seminar or Conference Tabletop Exercise Full Scale Exercise Automated Sharing 16

Notional Diagram Communications Sector Information Sharing Trusted Peers & Commercial Partners Network Service Providers (NSP) Group Formal/Informal Peer Organizations Government Contracts DHS/CS&C ECS/E3A Customers DHS Coordinated Information Sharing Process NCCIC/ DHS Portal NCC Comm-ISAC State Fusion Centers/ISAOs/ Other Sector ISACs Public/Private Partners FCC/State PUCs Commercial Security Services/Third Party Partners ISP Internal Use Internal IT Enterprise Systems Network Service Providers (NOTE: All Information Received is Validated Prior to Action) Federal/State Customers (DoD, GSA, PSAPs etc.) Other Critical Infrastructure Sectors (Financial Services, Electric, IT, etc.) Federal/State Partners (EOP, DHS, Governor s Office, TAGs etc.)) ISP Service Delivery Network Law Enforcement Sector Policy & Planning Hi-level network vulnerability information/ CTIs/ No PII Cyber threat indicators shared b/w ISPs and commercial partners Consumers / Managed Security Customers Federal, State & Local Law Enforcement + Organizations (FBI NCIJTF, Infraguard) Comms Sector Coordinating Council (CSCC)/Government Coordinating Council (GCC) State, Local, Tribal, Territorial SCC/GCC Packaged information provided to managed service customers Information shared w/ law enforcement pursuant to warrant and/or criminal issue Information about ISPs cyber risk management programs shared with state government CTIs shared with the Comms- ISAC/NCCIC/Other sectors

Information Sharing Matrix National Svc Providers Formal/Informal Peer Organizations Commercial Security Services/ 3d Party Partners Internal IT Enterprise Systems ISP Service Delivery Network Consumers/Managed Security Customers Federal, State & Local Law Enforcement and Organizations DHS/CS&C ECS/E3A Customers Other Critical Infrastructure Sectors Phone AIS Teleconference Conference/Seminar Distro List Email DHS/NCCIC Portal US-CERT/ Sector ISACs NCC/ Comm ISAC Fed/State Partners

Moving Forward Continuous Improvement Information Sharing & Analysis Organizations (ISAOs) Network Service Provider Refinements Automated Indicator Sharing Initiatives International Collaboration 19

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback