Critical Infrastructure Security and Resilience



Similar documents
THE WHITE HOUSE. Office of the Press Secretary. For Immediate Release February 12, February 12, 2013

Final Draft/Pre-Decisional/Do Not Cite. Forging a Common Understanding for Critical Infrastructure. Shared Narrative

NIPP Partnering for Critical Infrastructure Security and Resilience

U.S. Department of Homeland Security Protective Security Advisor (PSA) North Carolina District

Update on U.S. Critical Infrastructure and Cybersecurity Initiatives

Subject: Critical Infrastructure Identification, Prioritization, and Protection

December 17, 2003 Homeland Security Presidential Directive/Hspd-7

NATIONAL STRATEGY FOR GLOBAL SUPPLY CHAIN SECURITY

Water Critical Infrastructure and Key Resources Sector-Specific Plan as input to the National Infrastructure Protection Plan Executive Summary

Increasing Energy Reliability & Resiliency NGA Policy Institute for Governors' Energy Advisors Denver Colorado, September 11, 2013

National Infrastructure Protection Plan Partnering to enhance protection and resiliency

On the European experience in critical infrastructure protection

Critical Infrastructure Security & Resilience Month 2014 Toolkit

Critical Infrastructure & Supervisory Control and Data Acquisition (SCADA) CYBER PROTECTION

How To Understand And Manage Cybersecurity Risk

Why you should adopt the NIST Cybersecurity Framework

Integrating Cybersecurity with Emergency Operations Plans (EOPs) for K-12 Education

Department of Homeland Security (DHS) GPS Interference Detection and Mitigation (IDM) Program

Integrating Cybersecurity with Emergency Operations Plans (EOPs) for Institutions of Higher Education (IHEs)

INTRODUCTION TO INFORMATION TECHNOLOGY SECTOR CRITICAL INFRASTRUCTURE PROTECTION...

A MULTIFACETED CYBERSECURITY APPROACH TO SAFEGUARD YOUR OPERATIONS

Supplemental Tool: Executing A Critical Infrastructure Risk Management Approach

Westlaw Journal. What is the Cybersecurity Framework? Risk Management Process And Pathway to Corporate Liability? Expert Analysis

National Cybersecurity & Communications Integration Center (NCCIC)

Homeland Security Presidential Directive/HSPD-5 1

7 Homeland. ty Grant Program HOMELAND SECURITY GRANT PROGRAM. Fiscal Year 2008

Patriot Watch VIGILANCE SAFEGUARDING AMERICA

INFRAGARD.ORG. Portland FBI. Unclassified 1

Cybersecurity Converged Resilience :

Public Private Partnerships and National Input to International Cyber Security

CYBER SECURITY GUIDANCE

The NIST Cybersecurity Framework

CLIENT UPDATE CRITICAL INFRASTRUCTURE CYBERSECURITY: U.S. GOVERNMENT RESPONSE AND IMPLICATIONS

Washington State Fusion Center. The Pacific Northwest Economic Region

Why you should adopt the NIST Cybersecurity Framework

Threat and Hazard Identification and Risk Assessment

NH!ISAC"ADVISORY"201.13" NATIONAL"CRITICAL"INFRASTRUCTURE"RESILIENCE"ANALYSIS"REPORT""

Department of Homeland Security Federal Government Offerings, Products, and Services

ICS-CERT Year in Review. Industrial Control Systems Cyber Emergency Response Team. National Cybersecurity and Communications Integration Center

Lessons from Defending Cyberspace

TEXAS HOMELAND SECURITY STRATEGIC PLAN : PRIORITY ACTIONS

Establishing A Secure & Resilient Water Sector. Overview. Legislative Drivers

CSCAP MEMORANDUM NO. 24 Safety and Security of Vital Undersea Communications Infrastructure

Cybersecurity for Medical Devices

The Aviation Information Sharing and Analysis Center (A-ISAC)

For Discussion Paper No. 9/2011 on 3 November 2011 DIGITAL 21 STRATEGY ADVISORY COMMITTEE. Cyber Security

Department of Homeland Security Control Systems Security Program

U.S. Cyber Security Readiness

Water Security in New Jersey: Partnership and Services

Section A: Introduction, Definitions and Principles of Infrastructure Resilience

Business Continuity & Disaster Recovery

Global Cyber Range (GCR) Empowering the Cybersecurity Professional (CyPro)

CONCEPTS IN CYBER SECURITY

PROTECTING CRITICAL CONTROL AND SCADA SYSTEMS WITH A CYBER SECURITY MANAGEMENT SYSTEM

Cybersecurity in the Utilities Sector Best Practices and Implementation 2014 Canadian Utilities IT & Telecom Conference September 24, 2014

GAO CRITICAL INFRASTRUCTURE PROTECTION. DHS Could Better Manage Security Surveys and Vulnerability Assessments. Report to Congressional Requesters

Supplemental Tool: NPPD Resources to Support Vulnerability Assessments

GPS Use in U.S. Critical Infrastructure. and Emergency Communications. Presented to the

Release of the Draft Cybersecurity Procurement Language for Energy Delivery Systems

Cybersecurity Framework: Current Status and Next Steps

What are you trying to secure against Cyber Attack?

NIST CYBERSECURITY FRAMEWORK IMPLEMENTATION: ENERGY SECTOR APPROACH

CyberSecurity Solutions. Delivering

State Homeland Security Strategy (2012)

Which cybersecurity standard is most relevant for a water utility?

NEBRASKA STATE HOMELAND SECURITY STRATEGY

U.S. Fire Administration. The Critical Infrastructure Protection Process Job Aid

Germany: Report on Developments in the Field of Information and Telecommunications in the Context of International Security (RES 69/28),

Executive Order 13636: The Healthcare Sector and the Cybersecurity Framework. September 23, 2014

Maritime Insurance Cyber Security Framing the Exposure. Tony Cowie May 2015

Cybersecurity and Corporate America: Finding Opportunities in the New Executive Order

Ohio Homeland Security Strategic Plan

Water Security Issues: The Federal Perspective. J. Alan Roberson, P.E. Director of Security and Regulatory Affairs AWWA Washington, DC

All. Presidential Directive (HSPD) 7, Critical Infrastructure Identification, Prioritization, and Protection, and as they relate to the NRF.

National Security & Homeland Security Councils Review of National Cyber Security Policy. Submission of the Business Software Alliance March 19, 2009

CRITICAL INFRASTRUCTURE PROTECTION. DHS Action Needed to Enhance Integration and Coordination of Vulnerability Assessment Efforts

INCO for Cyber Security. PTCIF: 21st Feb 2014

FFIEC Cybersecurity Assessment Tool

Written Statement of Richard Dewey Executive Vice President New York Independent System Operator

EEI Business Continuity. Threat Scenario Project (TSP) April 4, EEI Threat Scenario Project

Performs the Federal coordination role for supporting the energy requirements associated with National Special Security Events.

PATRIOTWATCHTM PATRIOTSHIELDTM PATRIOTSWORDTM

A Systems Approach to Protecting the U.S. Air Traffic Control System Against Cyber-Terrorism

FFIEC Cybersecurity Assessment Tool Overview for Chief Executive Officers and Boards of Directors

Cybersecurity: Mission integration to protect your assets

Transcription:

U.S. Department of Homeland Security in partnership with the National Coordination Office for Space-Based Positioning, Navigation and Timing Critical Infrastructure Security and Resilience International Committee on Global Navigation Satellite Systems November, 2014

Agenda GPS and the U.S. Critical Infrastructure U.S. Approach to Critical Infrastructure Security and Resilience International Critical Infrastructure Presenter s Name June 17, 2003

U.S. GPS Today Primary distribution for time and frequency in the U.S. and the world Enables increased mobility and innovation in critical infrastructure Evolution of GPS dependencies: Incorporated into broadly-used mobile devices Integrates with other technologies, including Geographic Information Systems, remote sensing, and precision location technologies Advances efficiencies in operations and supply chains Presenter s Name June 17, 2003 3

GPS and U.S. Critical Infrastructure ATM Networks Stock Exchanges Energy Plants Power Grids Substations Banks/ Nodes Internet Banking GPS Supporting Power Grid Systems GPS GPS Supporting Banking Operations Rail Yards Switching Towers & Signals Wireless Internet C 2 Centers Air Traffic Control Ship Routing GPS Supporting Transportation Systems Access GIS / Map Comms Networks GPS Supporting Communications Systems Relay Position To 911 Dispatch Uplink from USAF GPS Master Control Station UTC Master Clocks at US Naval Observatory Presenter s Name June 17, 2003 4

Department of Homeland Security Federal Coordinator for U.S. Critical Infrastructure Leads the national effort to mitigate risks to, strengthen the security of, and enhance the all-hazard resilience of critical infrastructure. Partners across the critical infrastructure domain, leads related preparedness activities, and serves as an information-sharing conduit between the private sector and public entities. Security: Reducing the risk to physical and cyber critical infrastructure caused by natural and manmade threats. Resilience: The ability to prepare for and adapt to changing conditions, and withstand and recover rapidly from disruptions. Presenter s Name June 17, 2003 5

United States Critical Infrastructure Critical Infrastructure includes distributed networks, varied organizational structures and operating models (including multinational ownership), interdependent functions and systems in both physical and cyber space, and governance constructs that involve multi-level authorities, responsibilities, and regulations. Chemical Commercial Facilities Communications Critical Manufacturing Dams Defense Industrial Base 16 Critical Infrastructure Sectors in the U.S. Emergency Services Energy Financial Services Food & Agriculture Government Facilities Healthcare and Public Health Information Technology Nuclear Reactors, Materials and Waste Transportation Systems Water & Wastewater Systems Critical Infrastructure Defined: Assets, systems, and networks, whether physical or virtual, so vital to the United States that their incapacitation or destruction would have a debilitating effect on security, national economic security, national public health or safety, or any combination thereof. Presenter s Name June 17, 2003 6

National Policies President Barack Obama signed two policies related to critical infrastructure security and resilience in February 2013: Presidential Policy Directive 21: Critical Infrastructure Security and Resilience Executive Order 13636: Improving Critical Infrastructure Cybersecurity The Nation's critical infrastructure provides the essential services that underpin American society. Proactive and coordinated efforts are necessary to strengthen and maintain secure, functioning, and resilient critical infrastructure that are vital to public confidence and the Nation's safety, prosperity, and well-being. Presidential Policy Directive (PPD) 21 Presenter s Name June 17, 2003 7

National Infrastructure Protection Plan - 2013 Provides strategic guidance for the national effort to enhance security and resilience through critical infrastructure community collaboration: Applies a risk management focus Promotes collective action through partnerships Outlines authorities, roles and responsibilities Guides DHS programs and activities and those of: Federal departments and agencies State, local, tribal, and territorial governments Regional organizations and partnerships Critical infrastructure owners and operators Other critical infrastructure stakeholders (e.g., academia, non-profit organizations) Courtesy of DHS Vision: A Nation in which physical and cyber critical infrastructure remain secure and resilient, with vulnerabilities reduced, consequences minimized, threats identified and disrupted, and response and recovery hastened. Presenter s Name June 17, 2003 8

Risk Management Framework Critical Infrastructure Risk Management Framework Partners benefit from access to knowledge and capabilities that would otherwise be unavailable to them Risk tolerances and priorities will vary Costs and benefits considered during decision making Information sharing integrated as core component of risk management Presenter s Name June 17, 2003 9

Many Stakeholders, Many Strengths Presenter s Name June 17, 2003 10

International Partners in Critical Infrastructure Security and Resilience Resilience stakeholders, interdependencies, and risk environment change over time and conditions. Continually seek to build upon: relationships with foreign infrastructure streamlined supply chains PPD-21 provides for State Department, DHS and others: Engage with foreign governments and organizations Exchange best practices and lessons learned Promote security and resilience of critical infrastructure Bilateral work with Public Safety Canada Multilateral work through: Partnership with Canada, UK, Australia, New Zealand Asia Pacific Economic Cooperation (APEC) economies European Union US Canada Experts meeting North Atlantic Treaty Organization (NATO) - Industrial Resources Communication Services Group (IRCSG) Presenter s Name June 17, 2003 11

Pursuing Resilient P, N, T If a disruption were to occur to GPS civil services, the U.S. goal is to restore the essential functions of the economy, society, and government, as quickly as possible. In other words, pursue self-healing P, N, T architectures and infrastructures (system-of-systems) that bend, rather than break, in the face of a disruption. Resilience: The ability to prepare for and adapt to changing conditions and withstand and recover rapidly from disruptions; includes the ability to withstand and recover from deliberate attacks, accidents, or naturally occurring threats or incidents. (Source: NIPP, 2013 & PPD-21, 2013) Presenter s Name June 17, 2003 12

For more information, visit: www.dhs.gov/critical-infrastructure John Dragseth Office of Infrastructure Protection Strategy and Policy John.Dragseth@hq.dhs.gov

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information