Blue Cascades II Critical Infrastructure Interdependencies Post Exercise Meeting

1
Blue Cascades II Critical Infrastructure
Interdependencies Post Exercise Meeting
Partnership for Regional Infrastructure Security
2
Thanks To Our Blue Cascades II Sponsors
King County, PNWER, Trans Canada Microsoft,
Puget Sound Energy
3
Working Group 1 Interdependencies and Cyber
Security Issues(Blue Cascades II Recommendations
1-5)

• The Problem
• How to identify what appropriate actions
  stakeholders can take to provide themselves
  greater understanding of interdependencies and
  related physical/cyber vulnerabilities, impacts,
  and operational dynamics, and develop appropriate
  safeguards, contingency plans, mitigation
  measures, exercises and training.

4
Working Group 1 Interdependencies and Cyber
Security Issues(Blue Cascades II Recommendations
1-5)

• Issues
• What information is required?
• How can this information be obtained,
  disseminated and stored?
• What legal and security requirements need to be
  addressed?
• How can this information be analyzed?
• What tools and procedures need to be developed?
• How can such information be provided to the
  people who have a need-to-know for planning and
  emergency response purposes?

5
Working Group 1 Interdependencies and Cyber
Security Issues(Blue Cascades II Recommendations
1-5)

• Sample Potential Projects
• Develop/customize a template or system for use by
  organizations to identify their
  interdependencies.
• Explore ways to establish a secure data
  repository, identifying possible locations and
  addressing the issue of access
• Develop a pilot project, with federal government
  assistance, to leverage existing analytic systems
  to assess region-wide interdependencies
• Hold additional regional exercise(s) tailored to
  gain more detailed understanding of
  interdependencies.
• Develop criteria to determine when a cyber attack
  is underway
• Develop tutorials on infrastructure outage
  impacts and SCADA/process control systems threats
  and impacts
• Other (see exercise recommendations)

6
Working Group 1 Interdependencies and Cyber
Security Issues(Blue Cascades II Recommendations
1-5)

• Potential Projects
• Develop criteria to standup E.O.C for cyber
  attack.
• Develop Dictionary/glossary for critical
  infrastructure cyber terminology
• Develop tools and methodologies to educate
  stakeholders, legislators, etc. on critical
  infrastructure and cyber security /
  vulnerabilities interdependencies

7
Working Group 1 Interdependencies and Cyber
Security Issues(Blue Cascades II Recommendations
1-5)

• Tutorial to educate stakeholders on blackouts and
  rolling blackouts and their interdependent impact
• Develop a classification scheme to allow for
  information sharing but protect from public
  release.
• Develop a technical/predictive/forward-looking
  roadmap for new cyber threats scenarios
• Collect and disseminate toolsets templates to
  be used to recognize interdependencies
  especially more subtle ones.

8
Working Group 1 Interdependencies and Cyber
Security Issues(Blue Cascades II Recommendations
1-5)

• Have states provide budgeting and tools for
  education on interdependency projects
• Red/crash phone model capability for cyber
  attack calls
• Pilot with CERT, DHS,FBI etc
• Legal barrier removal for interdependency issues,
  vulnerabilities, sharing. Create Rules of access
  to data to avoid stovepiping
• Database for interdependency data models,
  information, with restricted access yet readily
  available

9
Working Group 1 Interdependencies and Cyber
Security Issues(Blue Cascades II Recommendations
1-5)

• Create a secondary backup internet similar to
  DOD model
• Bury/secure electric telephone transmission
  lines and substations

10
Working Group 2. Cooperation and
Coordination(Blue Cascades II Recommendations
6-17)

• The Problem
• How to achieve a level of coordination and
  cooperation that will further regional
  preparedness and facilitate rapid response and
  recovery from regional disasters due to
  physical/cyber causes.

11
Working Group 2. Cooperation and
Coordination(Blue Cascades II Recommendations
6-17)

• Issues
• How can states, local government and private
  sector organizations, and community organizations
  share information on response and recovery plans,
  mechanisms and systems to better understand
  capabilities and areas of mutual benefit, or
  problems, and avoid duplication of effort?
• How can diverse organizations collaborate on, and
  where necessary, develop regional strategies and
  protocols, establish new or build upon existing
  information sharing mechanisms, share costs of
  projects, and other activities to fill
  preparedness gaps?

12
Working Group 2. Cooperation and
Coordination(Blue Cascades II Recommendations
6-17)

• Sample Potential Projects
• Regional Pilot project to develop an approach to
  coordinate organizations emergency
  response/recovery guidelines, agreements,
  systems, etc.
• Develop a Regional Information Sharing and
  Analysis Center and, under this broader umbrella,
  a regional Cyber Security Council with
  complementary mission and objectives.

13
Working Group 2. Cooperation and
Coordination(Blue Cascades II Recommendations
6-17)

• Potential Projects
• Create Cyber Security Council (Roundtable)
  (address liability issues Good Sumaritan
  legislation
• Develop protocols for information sharing
  mechanism for clearances
• Continue exercises, workshops, seminars that
  build relationships that cross stove-pipes
• Yellow Pages Resource Directory who does what
• Self Assessment Handbook for Cyber Training for
  government and private What to do if
• Cyber First Aid Handbook

14
Working Group 3 Communications and Info
Sharing(Blue Cascades II Recommendations 18-22)

• The Problem
• How do private and public sector stakeholders
  address legal, proprietary, and other impediments
  to creating an information sharing capability
  that will be region-wide, cross-border and enable
  the dissemination of threat, incident,
  operational and other sensitive information?

15
Working Group 3 Communications and Info
Sharing(Blue Cascades II Recommendations 18-22)

• Issues
• What are the challenges involved in developing
  regional information sharing capabilities and
  interoperable communications systems that could
  handle threat, outage and other information, and
  serve general preparedness and response purposes?

16
Working Group 3 Communications and Info
Sharing(Blue Cascades II Recommendations 18-22)

• Sample Potential Projects
• Determine how to further develop NW-WARN as a
  regional mechanism for alerts/ and sharing
  information, and include cyber issues
• Hold a workshop to bring stakeholders together to
  develop a better understanding among stakeholders
  of the National Response Plan and the National
  Incident Management (NIMS) System and how
  regional unified command will operate during a
  cyber attack

17
Working Group 3 Communications and Info
Sharing(Blue Cascades II Recommendations 18-22)

• Potential Projects
• Public Disclosure Exemptions
• NIMS Workshops
• Enhance NW WARN include ISAC functionality
• Centralized listing of Exercises and Events
• Communications when phones and internet are
  disrupted Inventory what capabilities exist.
  Working Group 1 Interdependencies and Cyber
  Security Issues(Blue Cascades II Recommendations
  1-5)

18
Group 4 Roles and Missions (Blue Cascade II
Recommendations 23-25)

• The Problem
• There often is lack of a common understanding of
  the roles and responsibilities that federal,
  state, local, defense and private sector actors
  can bring to bear for collaborative,
  cross-jurisdictional infrastructure preparedness,
  response and recovery efforts.

19
Group 4 Roles and Missions (Blue Cascade II
Recommendations 23-25)

• Issues
• What cultural, legal and policy barriers exist
  that impede cross-sector and cross-jurisdictional
  collaboration and cooperation?
• What improvements need to be made to physical and
  particularly cyber incident management to meet
  emerging challenges?

20
Group 4 Roles and Missions (Blue Cascade II
Recommendations 23-25)

• Sample Potential Projects
• Bring key organizations together to discuss
  roles, mission and expectations regarding
  disaster management, with particular focus on
  cyber security and terrorist-related situations.
• Work with the state to build upon existing plans,
  procedures and mechanisms, including the new
  National Incident Management System, to develop a
  sound approach to determine roles and
  responsibilities and related jurisdictional
  issues.

21
Group 4 Roles and Missions (Blue Cascade II
Recommendations 23-25)

• Potential Projects

22
Working Group 5 Resources Management(Blue
Cascades II Recommendations 26-29)

• The Problem
• Regions and localities lack management strategies
  for large-scale disasters that facilitate
  securing necessary manpower, equipment and
  services.

23
Working Group 5 Resources Management(Blue
Cascades II Recommendations 26-29)

• Issues
• How can stakeholders develop a regional resource
  management strategy for large-scale disasters
  that takes into account federal (civilian and
  defense) and other government services and
  private sector resources?

24
Working Group 5 Resources Management(Blue
Cascades II Recommendations 26-29)

• Sample Potential Projects
• Identify and list for stakeholders what public
  and private sector resources, including Defense
  Department resources, available for disaster
  preparedness and response and how to access these
  resources
• Develop a pilot project regional management
  resource strategy
• Develop a certification program for maintenance,
  medical, and other critical private sector
  personnel to enable them to perform their duties
  unimpeded during emergencies

25
Working Group 5 Resources Management(Blue
Cascades II Recommendations 26-29)

• Potential Projects

26
Working Group 6 Public Information and
Education(Blue Cascades II Recommendations 30-33)

• The Problem
• One of the most significant readiness shortfalls
  is lack of a public information and education
  strategy that enables public and private
  organizations with major roles in response and
  recovery to provide necessary information to the
  media and general public in a coordinated and
  effective way.

27
Working Group 6 Public Information and
Education(Blue Cascades II Recommendations 30-33)

• Issues
• How can public and private organizations
  coordinate and disseminate public information
  effectively to deal with large-scale regional
  disasters, particularly those that may involve
  panic situations or complex issues such as
  weapons of mass destruction and cyber attacks?
  What training could be useful for the general
  public and the media?

28
Working Group 6 Public Information and
Education(Blue Cascades II Recommendations 30-33)

• Sample Potential Projects
• Develop, or leverage an existing mechanism to
  enable development of a plan/process to
  coordinate public information during regional
  disasters or significant cyber attack scenarios
• Establish a Web-based information resource for
  regional stakeholders
• Develop/leverage an existing training course for
  private and public sector employees, including
  community institutions, on what they need to do
  in major emergencies
• Develop/leverage an existing training course for
  public information officers and media on physical
  and cyber threats and impacts and include these
  individuals in workshops and exercises.

29
Working Group 6 Public Information and
Education(Blue Cascades II Recommendations 30-33)

• Potential Projects

30
Blue Cascades II Critical Infrastructure
Interdependencies Post Exercise Meeting

• Thanks for your support!