California Cybersecurity Integration Center (Cal-CSIC)
Agenda Mission and Scope Whole of State Government Approach Where is the Cal-CSIC? Cal-CSIC Partners Attaining Cyber Maturity in Parallel Machine to Machine Intelligence Sharing Capabilities How to Partner with Cal-CSIC Cal-CSIC Contacts 2
California Cyber Security Integration Center Established by Governor s Executive Order B-34-15 Primary mission: Reduce the likelihood and severity of cyber incidents that could damage California s economy, its critical infrastructure, or public and private sector computer networks Serve as central organizing hub of state government s cybersecurity activities Coordinate information sharing with local, state and federal agencies, tribal governments, utilities and other services providers, academic institutions, and non-governmental organizations Review threat intelligences from partner agencies; assess risks, prioritize threats and provide warnings of cyber attacks Develop a statewide cybersecurity strategy in partnership with the Governor s Cybersecurity Task Force 3
Whole of State Government Approach Focus the state s resources to protect all of California Sharing cyber threat intelligence and information with partners State, local and tribal governments Higher education, including University of California, California State Universities and California Community Colleges Private industry, including utilities, health, financial and technology Coordinating cyber incident response with partner agencies 4
Where is the Cal-CSIC? The Cal-CSIC is co-located with California State Threat Assessment Center (STAC) Dedicated complex at Mather, CA, adjacent to the State Operations Center Co-location enables holistic security view Physical security with cybersecurity Builds on already established capabilities Access to classified systems and intelligence; partners Facilitates info-sharing platforms, info controls, security protocols, partnerships and networks 5
Cybersecurity Partners Federal FBI DHS DoD State State Agencies Go Biz Local Educational Financial Critical Infrastructure Cities Counties Interstate New York Illinois Wisconsin Michigan Private Industry and Critical Infrastructure Transportation Financial Energy Education and Science Water and Wastewater Emergency Services Healthcare Food and Agriculture 6
Cal-CSIC Working Partnerships Daily working relationship with the State Threat Assessment Center (STAC) and all five other California Fusion Centers California Secretary of State s Office California Franchise Tax board (FTB) California Department of Corrections and Rehabilitation (CDCR) Counties of Humbolt, Orange, Riverside City & County of LA, San Diego, and Santa Clara Union Bank HQ San Francisco California State Commanders Veterans Council Several Hospitals including the Kaiser Permanente Foundation and Sutter Health Group Several K-12 School Districts throughout the State Several Utilities including the California Public Utilities Commission, Pacific Gas & Electric, Sacramento Municipal Utilities District, Los Angeles Department of Water and Power and SoCal Edison National Cybersecurity and Communications Integration Center (NCCIC) Intelligence sharing with 450+ cybersecurity professionals within California 7
Attaining State Cyber Maturity in Parallel Core Partners: California Department of Technology, California Highway Patrol, California Governor s Office of Emergency Services, and the California Military Department In addition to Cal-CSIC s statewide focus, we work through our Core Partners to enhance the State s internal cyber security posture Policy, standards, procedures and cyber education to state agencies through the California Department of Technology Independent cybersecurity vulnerability assessments and penetration testing through the California Military Department Cyber forensic and law enforcement capabilities through California Highway Patrol Working in concert with the Governor s Cyber Task Force to increase public and private sector cybersecurity coordination, communication, and information sharing 8
Machine to Machine Intelligence Sharing Program The Cal-CSIC is passing logged events between our partners network security devices through our Threat Intelligence (ThreatConnect) and our Threat Analytics (FireEye TAP) platforms Indicators of Compromise (IOCs) are passed between the two platforms Alerts are passed from the Analytics Platform back to the Intelligence Platform Alerts are then shared with our 450+ partners statewide 9
Capabilities Sources of Intelligence National Cybersecurity and Communications Integration Center Center for Internet Security Federal Bureau of Investigation Department of Homeland Security Department of Defense California Highway Patrol Private Sector Partners Fusion Centers California National Internet / Open Source Partner Agencies Franchise Tax Board Office of Emergency Services California Department of Corrections and Rehabilitation Correlation Information Analysis Threat Analytics Deep Web Research Collaboration Information Sharing Governance Outreach Programs State-Centric Audience - Corporate - Financial Institutions - Educational - Critical Infrastructure - Health Care - County, City, Local Agencies - State Agencies 10
Establish a Partnership with Cal-CSIC Become a California Governor s Cyber Security Task Force member Contact Cal-CSIC for next steps including overview of facility Support the build-out of Incident Response Team capability Desired end state is to attain Public / Private strategic alliances for cyber intelligence and information sharing to create statewide resiliency 11
Cal-CSIC Contacts Contact us to get involved: CalCSIC@caloes.ca.gov Register for alerts: https://calcsic.org Follow us on Twitter: @CAL_CSIC Keith Tresh, Commander Keith.Tresh@caloes.ca.gov Mario Garcia, Deputy Commander Mario.Garcia@caloes.ca.gov 12