Homeland Security UNCLASSIFIED United States Coast Guard Office of Port and Facility Compliance (CG-FAC) Cyber Security and the Marine Transportation System.

Slides:

Advertisements

Similar presentations

Minnesota Port and Waterway Security Working Group Meeting April 12, 2012.

Advertisements

Lisanne Sison Director ERM Bickmore

Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.

SL21 Information Security Board Mission, Goals and Guiding Principles.

Strategy 2022: A Holistic View Tony Hayes International President ISACA © 2012, ISACA. All rights reserved.

David A. Brown Chief Information Security Officer State of Ohio

1 United States Fire Administration Emergency Management and Response ISAC Protecting the Critical Infrastructures of the Emergency Management and Response.

National Infrastructure Protection Plan

The U.S. Coast Guard’s Role in Cybersecurity

DHS, National Cyber Security Division Overview

National Protection and Programs Directorate Department of Homeland Security The Office of Infrastructure Protection Cybersecurity Brief [Date of presentation]

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Marine Transportation System Common Assessment & Reporting Tool (CART) Mr. Thomas Kalisz, USCG “The nation needs a coordinated, integrated approach to.

National Space-Based Positioning, Navigation, and Timing (PNT) Federal Advisory Board DHS Challenges & Opportunities Captain Curtis Dubay, P.E. Department.

IACT 901 Module 9 Establishing Technology Strategy - Scope & Purpose.

Opportunities & Implications for Turkish Organisations & Projects

Enterprise Architecture

COBIT® 5 for Risk Introduction

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

EASTERN MICHIGAN UNIVERSITY Continuity of Operations Planning (COOP)

Eric R. Johnson Hillsborough County, (Tampa) FL

Defining high-performance What is FM Diagnostics? A demonstration An application Benefits Today’s Agenda.

Title: Port Security Risk Assessment Tool (PSRAT) Author:Tony Regalbuto Chief, Office of International & Domestic Port Security Assessments United States.

The Evergreen, Background, Methodology and IT Service Management Model

Part of a Broader Strategy

Don Von Dollen Senior Program Manager, Data Integration & Communications Grid Interop December 4, 2012 A Utility Standards and Technology Adoption Framework.

United States Coast Guard Port Security Assessment Program Evaluability Assessment LaKeshia Allen Alexandra Sommers May 2, 2005.

Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013 DRAFT.

Network Security Resources from the Department of Homeland Security National Cyber Security Division.

Introduction to the National Cybersecurity & Communications Integration Center (NCCIC) “A Partnership for Strength” 1.

Critical Infrastructure Protection: Program Overview

ISO17799 Maturity. Confidentiality Confidentiality relates to the protection of sensitive data from unauthorized use and distribution. Examples include:

A National approach to Cyber security/CIIP: Raising awareness.

1 Smart Grid Cyber Security Annabelle Lee Senior Cyber Security Strategist Computer Security Division National Institute of Standards and Technology June.

Homeland Security UNCLASSIFIED Executive Order Presidential Policy Directive (PPD) - 21 Implementing the Presidential Executive Order (EO) on cybersecurity.

Jerry Cochran Principal Security Strategist Trustworthy Computing Group Microsoft Corporation.

Chapter 1 Overview The NIST Computer Security Handbook defines the term Computer Security as:

℠ Pryvos ℠ Computer Security and Forensic Services May 27, 2015 Copyright © 2015 Pryvos, Inc. 1.

U.S. Coast Guard Intelligence & Criminal Investigations

Responsible Care® Health & Safety Task Force – 06 H&S.

Lecture slides prepared for “Computer Security: Principles and Practice”, 3/e, by William Stallings and Lawrie Brown, Chapter 1 “Overview”. © 2016 Pearson.

Development and Application of an Enterprise Risk Assessment Tool for Transportation Agencies Mark Abkowitz & Janey Camp Vanderbilt University Logistics,

Samantha Schreiner University of Illinois at Urbana- Champaign BA 559 – Professor Michael Shaw December 15 th, 2008 A Survey of IT Governance Through COBIT,

U. S. Coast Guard Security Maritime Transportation.

UNCLASSIFIED Homeland Security Introduction to the National Cybersecurity & Communications Integration Center (NCCIC) “A Partnership for Strength” 1.

Homeland Security UNCLASSIFIED Coast Guard Cyber Strategy Awareness Training.

Homeland Security, First Edition © 2012 Pearson Education, Inc. All rights reserved. Overview of National Infrastructure Protection CHAPTER 3.

Protection of Transportation Infrastructure from Cyber Attacks EXECUTIVE BRIEFING.

Program Overview and 2015 Outlook Finance & Administration Committee Meeting February 10, 2015 Sheri Le, Manager of Cybersecurity RTD.

Welcome Information Security Office Services Available to Counties Security Operations Center Questions.

Info-Tech Research Group1 1 Info-Tech Research Group, Inc. is a global leader in providing IT research and advice. Info-Tech’s products and services combine.

UNCLASSIFIED Homeland Security 2016 TRB Annual Meeting Cyber Risk Management CAPT Verne Gifford (CG-5PC) 1.

International Safety Rating System

JMFIP Financial Management Conference

Information Security Program

BIL 424 NETWORK ARCHITECTURE AND SERVICE PROVIDING.

Cyber Risk Presentation to the Board of Directors

U.S. COAST GUARD CYBERSECURITY POLICY and CYBERSECURITY PLANNING

United States Coast Guard Office of Port and Facility Compliance (CG-FAC) Cybersecurity and the Marine Transportation System.

California Cybersecurity Integration Center (Cal-CSIC)

Office of Port and Facility Compliance (CG-FAC)

USA Final Project Report

Cybersecurity EXERCISE (CE) ATD Scenario intro

Know Your Revised Alternate Security Program (ASP) Jen Wilk

Information Security Board

Cyber defense management

I have many checklists: how do I get started with cyber security?

General Counsel and Chief Privacy Officer

Perspectives on Defense Cyber Issues

Cybersecurity ATD technical

Presentation transcript:

Homeland Security UNCLASSIFIED United States Coast Guard Office of Port and Facility Compliance (CG-FAC) Cyber Security and the Marine Transportation System

UNCLASSIFIED Homeland Security Overview__________________________________________________ Coast Guard Cyber Security Strategy Cyber Security Framework (CSF) What does it mean for Industry? Cyber Suspicious Activity/Cyber Incident Reporting Cyber Security Resources Q & A

UNCLASSIFIED Homeland Security USCG Cyber Security Strategy USCG Cyber Security Strategy has three parts: Computer Network Defense Decision Advantage MTS Cyber Security

UNCLASSIFIED Homeland Security USCG Cyber Security Strategy MTS Cyber Security incorporates cyber aspects across USCG missions: Assessments Standards Response

UNCLASSIFIED Homeland Security Cyber Security Framework (CSF) __________________________________________________ CSF Consists of established and widely accepted IT industry: Standards Guidelines Best Practices Adoption is NOT mandatory, but PROMOTED by USCG Requires interface between Operations and IT leadership and management to effectively adopt. CSF adoption occurs when an organization uses the framework as a key part of its systematic process to ID, assess, prioritize, and/or communicate cyber risk

UNCLASSIFIED Homeland Security Cyber security Assessment Tools Cyber Resiliency Review (CRR) is a DHS assessment tool that measures the implementation of key cyber security capacities and capabilities. The goal of the CRR is to ensure that core process-based capabilities exist, are measureable, and are meaningful as predictors for an organization‘s ability to manage cyber risk.. For more information about the CRR, contact the DHS Computer Security Evaluation Program (CSEP) at Cybersecurity Capability Maturity Model (C2M2) a self-administered or facilitated mechanism to evaluate, prioritize, and improve cyber security capabilities. The model enables organizations to score their cyber security practices against the model process. Scores are used to determined risk tolerance for each domain and influence organizational efforts to improve scoring thus improving cyber security. This model is based on the electricity subsector’s model. Coast Guard is working with the Dept of Energy to retool the model for the maritime industry. Cybersecurity Evaluation Tool (CSET) is a desktop software tool that guides users through a step-by-step process for basic assessment of the cyber security posture of their industrial control system and enterprise information technology networks. CSET is available for download or in DVD format. To learn more or download a copy, visit To obtain a DVD copy, send an with your mailing address to CSF Adoption Tools __________________________________________________

UNCLASSIFIED Homeland Security What does this mean to industry? Recommends: Weighing cyber risks into assessments Take advantage of the tools that are available to you Make your concerns known to the Coast Guard and DHS Stay proactive!

UNCLASSIFIED Homeland Security Cyber Suspicious Activity/Incident Reporting & Mitigation__________________________________________________ Report Cyber suspicious activity and security incidents (breaches of security) to the NRC at Reporting is REQUIRED for incidents meeting the definition in 33 CFR (a) Notification of suspicious activities. (b) Notification of breaches of security. (c) Notification of transportation security incident (TSI). Industry can seek assistance from US-CERT or ICS-CERT for reducing the opportunity for & mitigating cyber attacks

UNCLASSIFIED Homeland Security Additional Resources can be found on the Homeport Cyber link Refer to ALCOASTs for information on MTS Cyber Security and Coast Guard efforts to ensure cyber security and resilience in the MTS. ALCOAST 122/14 ALCOAST 323/13 Cyber Security Resources __________________________________________________

UNCLASSIFIED Homeland Security Questions? USCG - MTS Cyber Security __________________________________________________