DHS T&E / Standards Building confidence in Homeland Security Technologies Bert Coursey Deputy Director T&E / Standards From Science….Security From Technology….Trust

2 DHS Goals: Secretary’s Priorities Keep terrorists, criminals and unlawful entrants out of the U.S. Prevent dangerous materials, weapons and illicit drugs from entering the country Strengthen screening of workers/travelers Secure critical infrastructure Build nimble, effective emergency response system and culture of preparedness Strengthen core management to ensure DHS is a great organization

3 DHS Science & Technology Goals Accelerate delivery of enhanced technological capabilities to meet requirements and fill capability gaps to support DHS Agencies in accomplishing their mission Establish a lean and agile GS-manned, world- class S&T management team to deliver the technological advantage necessary to ensure DHS Agency mission success and prevent technology surprise Provide leadership, research and educational opportunities and resources to develop the necessary intellectual basis to enable a national S&T workforce to secure the homeland

4 S&T Organization Approved:January29,2007

5 DHS Standards Standards policy is established in the Homeland Security Act of 2003  Public Law (1995) - National Technology Transfer and Advancement Act (NTTAA) directs that agencies will use voluntary consensus standards  OMB Circular A-119 Federal Participation in the Development and Use of Voluntary Consensus Standards and in Conformity Assessment Activities  Establishes a Standards Executive DHS lacks statutory authority to issue standards except in limited legacy programs  Coast Guard marine safety equipment

6 Responsibilities of the Standards Executive  Promote effective use of agency resources and participation  Promote development of appropriate agency positions on standards that  Are clearly defined  Do not conflict with each other  Are in the public interest  Are consistent with administration policy  Assure agency participation consistent with agency mission, authority, goals, and budget  Assure that agency participants understand and accurately represent agency positions  Coordinate multi-agency committee participation  Assure that necessary internal policies are in place for managing standards use and participation  Cooperate with DOC/NIST in implementing the Circular, including the participant database  Prepare agency input to OMB report  Serve on the ICSP  Develop processes for ongoing review and update of agency standards use  Develop processes to ensure that participation is properly reviewed (legal, budgetary) for compliance with applicable law

7 Standards Coordination: Linking Public and Private Sector ANSI ANSI-HSSP ICSP Private Sector Federal Government DHS

8 DHS Standards Infrastructure DHS Components DHS Standards Executive Interagency Committee on Standards Policy (ISCP) Other Federal Agencies and Departments DHS Standards Council Standards Subject Area Working Groups

9 DHS Standards Council The Council ensures effective participation by all components of DHS in adoption of standards by the Department. It promotes the adherence to uniform policies by DHS components in the development and use of standards and in conformity assessment activities. Council members represent:  Management Directorate  FEMA  DNDO  TSA  CMO/OHA  CBP  FLETC  USFA  ICE  USCG  USSS  CNE  NPPD  OCG  US VISIT

10 Standards Subject Area Working Groups The SSWAGs provides a forum for communication and information exchange across DHS components and between federal agencies. One of the SSAWG primary responsibilities includes making recommendations with respect to developing, adopting, and using DHS National Standards within DHS and by other Federal, state, and local government agencies DHS established a SSAWG for private sector preparedness

11  Identifies existing consensus standards, or, if none exist, assists DHS and those sectors requesting assistance to accelerate development and adoption of consensus standards critical to homeland security.  ANSI-HSSP promotes a positive, cooperative partnership between the public and private sectors in order to meet the needs of the nation in this critical area.  – A database for homeland security standards

12 NIOSH N N

13  Biometrics  Biological and Chemical Threat Agents  Training Programs for First Response to Weapons of Mass Destruction (WMD) Events  Enterprise Power Security  Emergency Communications  Lessons Learned from Hurricane Katrina  Credentialing and Access Control for Disaster Management

14 What is Adoption? Adoption is the process by which DHS expresses formal acceptance of a standard that: a) meets DHS needs, b) will be applied through contracts and agreements or grants; as a design, procedure or reference guide; or c) as a reference in another document. Adopted standards are not mandatory. However, use of these documents by DHS components and customers, product manufacturers, and process developers is very much encouraged.

15 43 DHS Adopted Standards Standards for Personal Protective Gear for First Responders 34 total 4 ANSI, 4 NIOSH, 26 NFPA Standards for Radiation and Nuclear Detection Equipment 4 ANSI/IEEE Standards for Incident Management 2 OASIS, 1 NFPA Standards for Biometrics 1 INCITS

16 Accreditation Requirements Accreditor for any CA function (ISO/IEC 17011) Product Certifiers Management System Certifiers Personnel Certifiers Laboratories Inspection Bodies ISO/IE C ISO/IE C ISO/IE C ISO/IE C ISO/IE C person, thing or process being assessed

17 Voluntary Private Sector Preparedness Accreditation and Certification Program: Leadership & Coordination Established a executive leadership team with representation from the four offices are called out in the legislation  FEMA (Designated Officer)  Office of Infrastructure Protection (IP)  Office of the Private Sector (PSO)  S&T (Executive Secretary)

18 Voluntary Private Sector Preparedness Accreditation and Certification Program: Adoption of Voluntary Preparedness Standards The requires DHS to “adopt on or more appropriate voluntary standards that promote preparedness, which may be tailored to address the unique nature of various sectors within the private sector, as necessary and appropriate, that shall be used in the accreditation and certification program under this subsection.”

19 Adoption Process at a Glance for Title IX  Consult  with representatives of organizations that coordinate or facilitate the development and use of voluntary consensus standards, representatives of voluntary consensus standards development organizations, private sector advisory councils, representatives of State and local governments, emergency management officials, and appropriate private sector advisory groups  Seek Recommendations  Utilizing the Federal Register  Select  Leveraging the existing infrastructure and proven processes that were developed by S&T to evaluate and adopt standards  Utilizing “Target Criteria” to evaluate the appropriateness private sector standards Authority for adoption rests with FEMA Administrator

20 Target Criteria 10 Subject areas  Scope and Policy  Requirements  Objectives and Strategies  Risk Management  Operations, Control, and Risk Mitigation  Communications  Competence and Training  Resource Management  Assessment and Evaluation  Continuing Review (ongoing management and maintenance) Establishes requirements for current emergency management, business continuity standards Examples of desired content for Comprehensive Preparedness Standard Criteria