The Challenging Landscape of Critical Information Infrastructure: Are We Ready? Leonard Bailey Senior Counsel Computer Crime & Intellectual Property Section.

Slides:



Advertisements
Similar presentations
Protective Security Advisors Securing the Nations critical infrastructure one community at a time.
Advertisements

Department of Homeland Security Site Assistance Visit (SAV)
Homeland Security at the FCC July 10, FCCs Homeland Security Focus Interagency Partnerships Industry Partnerships Infrastructure Protection Communications.
DEFENSE SUPPORT OF CIVIL AUTHORITIES (DSCA)
Idaho Critical Infrastructure and Key Resources Protection Program and Fusion Center Brief.
National Incident Management System (NIMS)  Part of Homeland Security Presidential Directive-5, February 28,  Campuses must be NIMS compliant in.
1 Pipeline Security Presented to: Pipeline Safety Trust New Orleans, Louisiana November 5, 2010.
CUBIC DEFENSE APPLICATIONS Security Summit Discussions Jeff Snyder Vice President, Cyber Programs Cubic Defense Applications.
GEORGE MASON UNIVERSITY Center for Infrastructure Protection and Homeland Security Integrating Critical Infrastructure into Emergency Management Programs.
Hurricane Katrina Lessons Learned Laurence I. Broun Departmental Emergency Coordinator Office of Law Enforcement, Security and Emergency Management May.
National Infrastructure Protection Plan
1 NGA Regional Bio-Terrorism Conference Boston, Massachusetts January 12-13, 2004.
DHS, National Cyber Security Division Overview
South Carolina Cyber.
National Space-Based Positioning, Navigation, and Timing (PNT) Federal Advisory Board DHS Challenges & Opportunities Captain Curtis Dubay, P.E. Department.
© 2011 Delmar, Cengage Learning Part I The Nature and Setting of Police Administration Chapter 3 Police Administration and Homeland Security.
Greg Shaw How do we turn private sector preparedness into an investment rather than a cost of doing.
Business Crisis and Continuity Management (BCCM) Class Session
PPA 573 – Emergency Management and Homeland Security Lecture 9b - Department of Homeland Security Strategic Plan.
Critical Infrastructure Protection (and Policy) H. Scott Matthews March 5, 2003.
USGS & Critical Infrastructure Christopher Terzich, Chair RCCC.
Security Issues on Campus: Government Initiatives Rodney J. Petersen University of Maryland Educause/Internet2 Security Task Force Copyright Rodney J.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
National Disaster Recovery Framework. National Disaster Recovery Framework Reasons for establishing the Framework Past large-scale recovery efforts revealed.
Maritime Security Risk Analysis Model
US-CERT National Cyber Security Division/ U.S. Computer Emergency Readiness Team (US-CERT) Overview Lawrence Hale Deputy Director, US-CERT.
A Combat Support Agency Defense Information Systems Agency Expanding Non-DOD Partnerships 17 August 2011.
Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013 DRAFT.
October 27, 2005 Contra Costa Operational Area Homeland Security Strategic and Tactical Planning and Hazardous Materials Response Assessment Project Overview.
PD 5 & 8 Created By: Ashley Spivey.  A form of executive order issued by the President with consent from the National Security Council  Carries the.
Homeland Security. Learning Topics Purpose Introduction History Homeland Security Act Homeland Defense Terrorism Advisory System Keeping yourself safe.
1 Information System Security Assurance Architecture A Proposed IEEE Standard for Managing Enterprise Risk February 7, 2005 Dr. Ron Ross Computer Security.
National Response Plan and DOI Mission Management Briefing for DOI Annual Business Conference Laurence I. Broun Departmental Emergency Coordinator Office.
1. Organization. Tradition CIA FBI Commissions US Commission on National Security in the 21 st Century (USCNS) Hart-Rudman Commission (see Phase 1 Report,
National Response Plan and DOI Mission Management Briefing for DOI Annual Business Conference Laurence I. Broun Departmental Emergency Coordinator Office.
Introduction to the National Cybersecurity & Communications Integration Center (NCCIC) “A Partnership for Strength” 1.
Association of Defense Communities June 23, 2015
Critical Infrastructure Protection Overview Building a safer, more secure, more resilient America The National Infrastructure Protection Plan, released.
Critical Infrastructure Protection: Program Overview
Information Sharing Challenges, Trends and Opportunities
Catastrophe Readiness and Response Session 7b 1 Session 7b Critical Infrastructure Drew Bumbak.
Texas Emergency Management Conference San Antonio April 3, 2012.
1 Smart Grid Cyber Security Annabelle Lee Senior Cyber Security Strategist Computer Security Division National Institute of Standards and Technology June.
EECS 710: Information Security and Assurance Assignment #3 Brent Frye 10/13/
National Incident Management System NIMS Revision Al Fluman, Acting Director Incident Management Systems Division (IMSD), National Integration Center.
1 The “New FEMA” The National Logistics Coordination Forum March 27, 2008 Eric Smith Assistant Administrator Logistics Management Directorate FEMA LOGISTICS.
The Homeland Security Act of 2002 During the second session of the 107th Congress, the primary focus was on how best to tackle the development of a viable,
PS Version 1 National Response Framework Overview for Private Sector Audiences January 22, 2008.
1 Session 7, Section 2 Critical Infrastructure Drew Bumbak.
1 State Homeland Security: Priorities and Funding R. Chris McIlroy Homeland Security and Technology Division National Governors Association.
Governor’s Office of Homeland Security & Emergency Preparedness LOUISIANA BANKERS ASSOCIATION 2010 Louisiana Emergency Preparedness Coalition Meetings.
Created by: Ashley Spivey For Department of Homeland Security All information from:
What is “national security”?  No longer defined only by threat of arms  It really is the economy  Infrastructure not controlled by the government.
Alex Adamec.  Any physical or virtual information system that controls, processes, transmits, receives, or stores electronic information in any form.
NATIONAL INCIDENT MANAGEMENT SYSTEM Department of Homeland Security Executive Office of Public Safety.
Citizen Corps Volunteer for America “Engaging Citizens In Homeland Security”
November 19, 2002 – Congress passed the Homeland Security Act of 2002, creating a new cabinet-level agency DHS activated in early 2003 Original Mission.
DHS/ODP OVERVIEW The Department of Homeland Security (DHS), Office for Domestic Preparedness (ODP) implements programs designed to enhance the preparedness.
SEC 470 OUTLET The learning interface/sec470outletdotcom.
INFORMATION SECURITY IN ARMENIA: PRESENT STATUS AND TASKS
WHAT is Project Matrix? An effort designed to:
California Cybersecurity Integration Center (Cal-CSIC)
By: Tekeste Berhan Habtu Chief Executive Officer Venue: African Union
The U.S. Department of Homeland Security
NPHS 1510 Federal and International
Introduction to: National Response Plan (NRP)
Unit 5- IS 800 Introduction to the National Response Framework
Deborah Housen-Couriel, ADV.
THE USA’S NEW POLICY DIRECTIVE ON NATIONAL PREPAREDNESS
Presentation transcript:

The Challenging Landscape of Critical Information Infrastructure: Are We Ready? Leonard Bailey Senior Counsel Computer Crime & Intellectual Property Section US Department of Justice March 9, 2007

Agenda Define the challenge. Outline the response. Propose ways forward.

Define the challenge.

The Complicated Landscape of Critical Information Infrastructure Protection: Are We Ready?

The Complicated Landscape of Critical Information Infrastructure Protection: Are We Ready? Military v. Non-Military Systems Wartime v. Peacetime Private v. Public International Physical v. Cyber

Cyber Disaster Planning Federal Incident Response Community –DHS, National Cyber Security Division –Law Enforcement/Intel –Department of Defense Information Sharing and Analysis Centers Sector Coordinating Councils Government Coordinating Council International Entities

The Complicated Landscape of Critical Information Infrastructure Protection: Are We Ready?

The Complicated Landscape of Critical Information Infrastructure Protection: Are We Ready? Communications and IT Sectors 13 Critical Infrastructure Sectors

What is “Critical”? Executive Order –“Infrastructures so vital that their incapacitation or destruction would have a debilitating impact on defense or economic security.” USA PATRIOT Act (P.L ) –“[S]ystems and assets, whether physical or virtual, so vital to the United States that the incapacity or destruction of such systems and assets would have a debilitating impact on security, national economic security, national public health and safety, or any combination of those matters.”

Interdependencies between Sectors –Known, unknown and unknowable. Interconnected systems –“The North American power grid is one large, interconnected machine.” What is “Critical”?

Convergence –Progress toward integrated IP Network. –Increased opportunity for cascading failure. –New “critical” functions. What is “Critical”?

International

Outline the response.

The Complicated Landscape of Critical Information Infrastructure Protection: Are We Ready?

The Complicated Landscape of Critical Information Infrastructure Protection: Are We Ready? Federal Government State, Local & Tribal Authorities Private Industry International Partners Academia

The Complicated Landscape of Critical Information Infrastructure Protection: Are We Ready? Natural Disaster Accident Attack

Assessment Restoration Remediation Response Incident Response Stop the bleeding – repair and mitigate damage. Identify the source of the incident. Take directed action against the cause.

Restoration Remediation Response Assessment Remediation CommunityIntelligence CommunityLaw Enforcement Community Incident Response War-Fighter Community International

Tripwires National Response Plan –The National Response Plan establishes a comprehensive approach to enhance the ability of the United States to manage domestic incidents. –Homeland Security Policy Directive 5 –Signed December 2004.

“Incident of national significance” –An actual or potential high-impact event that requires a coordinated and effective response by and appropriate combination of Federal, State, local, tribal, nongovernmental, and/or private-sector entities in order to save lives and minimize damage, and provide the basis for long-term community recovery and mitigation activities. –Cyber Annex specifically addresses management of cyber incidents. Tripwires

National Cyber Response Coordination Group

Origin of the NCRCG Department of Homeland Security –Effectuate responsibilities under HSPDs 5 and 7 and the National Response Plan (NRP). Department of Justice –Replace the IRC with an operational group that could help coordinate investigative response activities during a cyber incident. National Security Council –Provide a central interagency group for addressing cyber issues implicating national and homeland security.

Structure of the NCRCG Steering Committee –Co-chaired by DHS/NCSD, DOJ/CCIPS, and DOD/OSD-NII. –Includes: CIA DHS Director of National Intelligence (DNI) DOD DOE DOJ HSC NCIX NSA NSC OMB

Propose ways forward.

Encourage your leadership to undertake the challenge. What you can do

Challenge your leadership. –Help them focus on what matters in a manner that is helpful to them. What you can do

Align words and deeds –Are your entity’s actions consistent with the perception of the threat? –If not, why not? What you can do

Prepare and practice. –Do you have an incident response plan? –Is it up-to-date? –Has it been socialized in your organization? –Are you confident that it will be followed? What you can do

Getting more info Contact Us –Main: (202) – Web:

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.