Agenda

1
Agenda

• Introduction to the US Chamber of Commerce
• Sector Specific ISACs
• Cross Sector Security Initiatives
• PCIS
• NCSA
• InfraGard (time permitting)

2
US Chamber of Commerce

• Worlds largest business association
• 200,000 direct corporate members
• 3,000 state and local chambers
• 97 AmChams over seas
• Network of 3 million businesses

3
Information Sharing and Analysis Centers

• What is an ISAC?
• A way by which companies in a sector anonymously
  share information about threats and
  vulnerabilities with competitors within a
  specific sector and with government. That
  information is then analyzed and shared, with
  those in the ISAC.

4
Information Sharing and Analysis Centers

• What are the goals of an ISAC?
• To gather and analyze all relevant information,
  in one central location, to better understand and
  defend against threats to Infrastructure assets.

5
Information Sharing and Analysis Centers

• What are the problems with ISACs?
• Freedom of Information Act
• Concerns about Anti-trust and liability
• Usefulness of shared information from the
  government.

6
Information Sharing and Analysis Centers

• How do ISACs overcome these problems?
• Share information with private vendors, not
  government
• Industry is seeking legislative relief to address
  FOIA, anti-trust and liability concerns

7
Information Sharing and Analysis Centers

• Current ISACs
• Financial Services
• IT
• Oil and Gas
• Electric
• Telecommunications
• Surface Transportation
• Water (development)
• Law Enforcement (NIPC)
• Food

8
PCIS Mission
Coordinate cross-sector initiatives and
complement public-private efforts to promote and
assure reliable provision of critical
infrastructure services in the face of emerging
risks to economic and national security.
pcis.org
9
Relationships
pcis.org
10
Functions

• Provide a forum for cross-sector dialogue and
  action
• Provide a forum for cross-sector coordination
  with government
• Facilitate and coordinate cross-industry input to
  National Strategy
• Provide a means to contribute to appropriate
  government advisory bodies

pcis.org
11
Goals and Objectives

• Increase awareness and understanding of Critical
  Infrastructure Assurance
• Achieve strategic coordination across sectors and
  government
• Identify cross-sector dependencies,
  vulnerabilities, and risk management techniques
• Effectively share information across sectors
• Foster cross-sector actions for resolution
• Encourage active engagement and interest

pcis.org
12
PCIS Organization
pcis.org
13
Current Priorities

• National Strategy for Critical Infrastructure
  Assurance
• Digital Control Systems Security RD
  Clearinghouse
• Effective Practices Compendium
• Critical Infrastructure Assurance Awareness
  Materials and Support
• Risk Assessment Guidebook
• Cross-Sector Information Exchange

pcis.org
14
National Strategy Process
Banking and Finance
FEMA
Treasury
Electric Power
HHS
Energy
Oil and Gas
Defense
Commerce
Info and Comms
CIAO
GSA
Transportation
Railroads
State
Justice
CIA
Law Enforcement
EPA
NSA
Water
PCIS
pcis.org
15
Stay Safe Online Campaign

• National Cyber Security Alliance
• Educational Foundation
• Incorporated within PCIS
• Audience Homes, small businesses
• Top Ten tips
• Additional expert advice on web site
• www.staysafeonline.info
• Key message Protect your countrys
  infrastructures by raising your computers level
  of security

pcis.org
16
Contact Information

• Scott C. Algeier
• 202-463-5845
• salgeier_at_uschamber.com