Federal Information Sharing Resources for Small and Midsize Businesses Hosted by the Department of Homeland Security s (DHS) Critical Infrastructure Cyber Community (C3) Voluntary Program October 31, 2017
Reggie McKinney C3 Voluntary Program Manager, DHS 2
Information Sharing Landscape Active Automated Indicator Sharing Cyber Information Sharing & Collaboration Program Enhanced Cybersecurity Services Collaborative Professional Organizations ISACs & ISAOs Educational Networking Cybersecurity Events Alerts & Bulletins Webinars us cert.gov/ccubedvp 3
Federal Information Sharing Resources for Small and Midsize Businesses Introduction Reggie McKinney, C 3 Voluntary Program Manager, DHS Program Presentations Small Business Administration (SBA) Jack Bienko, Deputy Director for Entrepreneurship Education SMB Information and Analysis Organization (SMB isao) Bonnie Moss, Executive Director Federal Bureau of Investigation (FBI) Marcus Joachim, Supervisory Special Agent U.S. Secret Service Matt Chevraux, Assistant Special Agent in Charge, Office of Investigations, Cyber Strategy and Outreach Q&A Closing Reggie McKinney 4
KC[2 BL[1 Jack Bienko Deputy Director for Entrepreneurship Education, SBA 5
Slide 5 KC[2 BL[1 Jack is going slidesless! Kellenbarger, Christopher [USA], 10/18/2017 He will be giving a brief overview of the profile of an SMB, some research SBA has been doing, and cover SBDCs. Bodre, Laura [USA], 10/19/2017
Bonnie Moss Executive Director, SMB isao 6
MISSION Our mission at the SMB isao exists to form a community for advancing all aspects of cybersecurity, technology, business and organizational resiliency, and security standards through the sharing of threat intelligence. It is our goal to help bolster the cybersecurity posturing of small, micro, and mid sized businesses across the Nation to get a step ahead of cyber attacks instead of simply responding. 7
OUR SERVICE We passionately care about the SMB community We embrace the Information Sharing Community Model as envisioned by the ISAO SO We have created an information sharing community specifically designed for the SMB owner. We aim to increase cyber threat awareness and cybersecurity education for the SMB market OUR VALUE Affordable membership An avenue to report breaches anonymously Access to critical cyber threat alerts Forum for SMB owners to chat anonymously about cybersecurity threats or concerns Integration of data from industry sources and USG reports with data feeding into member reports Special offers to Members from our Partners 8
Our Model Supported by generous donors and sponsors Subscription based membership Housed at the ISAO Cyber Support Center Integrated website with Member Portal SMB Enterprise, a Member Monthly Report Partners Portal 9
Questions: Please utilize the Q&A or reach out to me Bonnie Moss Director, SMB isao www.smbisao.com info@smbisao.com 833 SMB SAFE 10
Marcus Joachim Supervisory Special Agent, FBI Office of Private Sector (OPS) 11
OPS OPS was established in 2014 and serves as the FBI s primary liaison with the American business community. OPS aligns and coordinates key FBI outreach programs to create a unified approach to working with private sector companies. 12
Domestic Security Alliance Council (DSAC) Private public sector partnership Membership is held by company Most members are Fortune 500/1000 level Nearly 500 member companies Governed by an Executive Working Group URL: www.dsac.gov 13
INFRAGARD Public Private partnership between FBI and individual members of the private sector. Foster Collaboration and information sharing that enhances collective ability to address threats to the U.S. Benefits Direct Engagement with the FBI, other government agencies, and private sector experts at local level. Members only web portal; access to latest FBI intelligence products www.infragard.org 14
Private Sector Coordinators (PSC) Mission To protect our nation s economy by strengthening FBI relationships with the American Private Sector. Primary POC for local interaction with the FBI. PSCs are located at every Field Office. 15
Matt Chevraux Assistant Special Agent in Charge Office of Investigations, Cyber Strategy and Outreach, U.S. Secret Service 16
United States Secret Service Electronic Crime Task Forces R. Matthew Chevraux Assistant Special Agent in Charge Office of Investigations Cyber Strategy and Outreach October 31, 2017
Electronic Crime Task Forces (ECTFs) Electronic Crimes Task Forces 40 Worldwide Trusted Partnerships Between Law Enforcement, Private Sector & Academia 4,000 Private Sector Partners 2,500 Federal, State, & Local Law Enforcement Partners 350 Academic Partners Coordinated Investigations, Information Sharing, Technical Expertise, and Training 18
USSS ECTF: Principles for Success Respond quickly to cyber crimes incidents by coordinating people and equipment assets. Liaison with our trusted partners through quarterly meetings and other means of real time information sharing. Emphasize prevention for both our protective and investigative missions through preparation, education and training. Response Information Sharing Prevention 19
ECTF Priorities: Core Violations Title 18, USC 1029 & 1030 High dollar loss/community impact Organized groups/multi defendant Transnational and multi district investigations Identify new technology and schemes 20
USSS ECTF: Locations 21
USSS ECTF: Cyber and Operational Resilience Tabletop Exercise Series Exercise Objectives Exercise information sharing processes and response actions before, during, and after an incident. Enhance shared understanding of how response to a significant cyber incident is likely to unfold, and set the stage for process improvement efforts. Explore what technical assistance is likely to be needed during an incident and how it can be delivered. Test the processes and review the playbooks that will be used to maintain and/or rebuild trust and confidence between the firm and their stakeholders. 22
Q&A How does information sharing differ for an SMB, as compared to a larger organization? What roadblocks might they face? What considerations must be made? 23
Q&A What can someone in the audience do today to step up their information sharing capabilities or get connected to an information sharing organization? 24
Q&A How can government and business work together to provide greater information sharing offerings to the SMB community? 25
Q&A Questions from the audience? 26
Thank you for joining us! Reggie McKinney, C 3 Program Manager, DHS https://www.us cert.gov/ccubedvp Jack Bienko, Deputy Director for Entrepreneurship Education, SBA https://www.sba.gov/ Bonnie Moss, Executive Director, SMB ISAO https://smbisao.com/ Marcus Joachim, Supervisory Special Agent, FBI www.infragard.org Matt Chevraux, Assistant Special Agent in Charge, U.S. Secret Service https://www.secretservice.gov/ 27