DHS Cybersecurity and Critical Infrastructure Webinar – Round 2

 

 

 

For those of you who were unable to participate in the first webinar providing updates regarding the Presidential Executive Order 13800 on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, the National Protection and Programs Directorate (NPPD) would like to invite you to join a second session of the webinar at 1:00 p.m. EDT on Tuesday, June 27.  This second session of the webinar will cover the same updates, focusing, in particular on Section 2, titled Cybersecurity of Critical Infrastructure, as well as provide participants the opportunity to ask questions.

Advance registration is not required.

To Join the Meeting:  https://share.dhs.gov/cybersecurity_eo_update_27june2017/

Dial –In Conference Bridge:  1-888-324-0239

Participant Passcode: 3990134#

The Conference line will open 30 minutes prior to the scheduled start time of the call.

If you have any questions or concerns about this matter, contact the NICC at 202-282-9201 or NICC@hq.dhs.gov.

FEMA Releases New Continuity Guidance Circular – Webinar Schedule

The Federal Emergency Management Agency (FEMA) has released the draft Continuity Guidance Circular www.fema.gov/continuity-guidance-circular which guides whole community efforts to develop and maintain the capability to ensure continuity of operations, continuity of government, and enduring constitutional government during an emergency that disrupts normal operations.

The draft document is nearing the end of a 30-day National Engagement Period that provides interested parties with an opportunity to comment.  There are three more webinars scheduled to engage interested parties.  Each hour long webinar contains the same information.

DATES:            June 20, 21, and 22, 2017

TIMES:             June 20 – 10:00-11:00AM (eastern)

June 21 – 3:00-4:00PM (eastern)

June 22 – 10:00-11:00AM (eastern)

REGISTER:      June 20 – https://fema.connectsolutions.com/cgc6/

June 21 – https://fema.connectsolutions.com/cgc7/

June 22 – https://fema.connectsolutions.com/cgc8/

AUDIO:             Audio: 800-320-4330 PIN 579861 for all three events.

 

October is National Cyber Security Awareness Month

Plan Ahead!

October is National Cyber Security Awareness Month (NCSAM), a collaborative effort between DHS, the National Cyber Security Alliance, and other public and private partners to raise awareness about the importance of cybersecurity and individual cyber hygiene.

Each week of NCSAM is dedicated to a specific cybersecurity theme, with related activities and events happening across the country:

  • October 2-6, 2017: Simple Steps to Online Safety. Week 1 will address the top consumer cybersecurity concerns, provide simple steps to protect against these concerns, and help the public understand what to do if they fall victim to cybercrime.
  • October 9-13, 2017: Cybersecurity in the Workplace is Everyone’s Business. Week 2 will showcase how organizations can protect against the most common cyber threats. The week will also look at resources to help organizations strengthen their cyber resilience, including the Cybersecurity Framework.
  • October 16-20, 2017: Today’s Predictions for Tomorrow’s Internet. Week 3 will remind citizens that their sensitive, personal information is the fuel that makes smart devices work. While there are tremendous benefits of this technology, it is critical to understand how to use these cutting-edge innovations in safe and secure ways.
  • October 23-27: The Internet Wants YOU:  Consider a Career is Cybersecurity.  Week 4 will encourage students and other job seekers to explore cybersecurity careers.  Key influencers – like parents, teachers, and state and local officials – will learn more about this growing field and how to engage youth in pursuing cybersecurity careers.
  • October 30-31:  Protecting Critical Infrastructure from Cyber Threats.  Week 5 will look at cybersecurity in relation to keeping our traffic lights, running water, phone lines, and other critical infrastructure secure.

 

National Institute of Standards & Technology Releases Planning Guide Briefs

Communities striving to improve their resilience by better planning for and dealing with hazard events will want to review six new “Guide Briefs” issued by the National Institute of Standards and Technology (NIST). The documents complement NIST’s Community Resilience Planning Guide for Buildings and Infrastructure Systems, which lays out a six-step process to plan for resilience in the face of natural, technological, and human-caused hazards.

Each of the Guide Briefs is intended to be used in conjunction with the NIST Guide, although several can be used independently by any community interested in taking steps to improve its resilience. For example, Guide Brief 12, “Short-Term Implementation Tasks”(link is external), suggests ways that communities can shorten recovery time as longer-term solutions are being put in place. These short-term tasks could include:

  • Developing a post-event recovery plan that streamlines the permitting process, adds resilience during repairs, protects the natural environment, preserves the community voice in approval of construction projects, and handles and processes the increase in construction activities.
  • Developing processes and guidelines for post-event assessments to accelerate evaluation and designation of buildings that can be used while being repaired.
  • Adopting the latest building codes and enforcing design and inspection requirements.

This link https://www.nist.gov/news-events/news/2017/05/nist-releases-six-new-community-resilience-planning-guide-briefs contains additional information.

DHS Shares Cyber Security Contact Information

Much like the Protective Security Advisors that have been operating within the Water Sector for several years, DHS is now working to develop a cadre of advisors that specialize in cyber security.  At present, their numbers are fewer than their Protective Security counterparts, but they are growing in numbers.  Here’s who they are and how to reach them:

 

CSA (Role / Title) Location Name (Last, First MI) Email DHS Cell Phone
     
Chief of Field Operations/Supervisory CSA Region 3 – Pittsburgh, PA Willke, Bradford J. bradford.willke@hq.dhs.gov 202-380-5899
Sr Cyber Security Advisor, Western U.S. Region 9 – Los Angeles, CA McElroy, Deron deron.t.mcelroy@hq.dhs.gov 213-310-1852
Cyber Security Advisor, Region I Region 1 – Boston, MA Vacant  
Cyber Security Advisor, Region II Region 2 – New York, NY Richard Jr., Richard S. richard.richard@hq.dhs.gov 631-241-3662
Cyber Security Advisor, Region III Region 3 – Philadelphia, PA Vacant  
Cyber Security Advisor, Region IV Region 4 – Atlanta, GA Walker, Klint klint.walker@hq.dhs.gov 404-895-1127
Cyber Security Advisor, Region V Region 5 – Chicago, IL Enriquez, Antonio P. antonio.enriquez@hq.dhs.gov 202-809-7894
Cyber Security Advisor, Region VI Region 6 – Dallas, TX Adams, Chad E. chad.adams@hq.dhs.gov 202-380-6024
Cyber Security Advisor, Houston-District Region 6 – Houston, TX Reeves, George george.reeves@hq.dhs.gov 281-714-1259
Cyber Security Advisor, Region VII Region 7 – Kansas City Selected – Awaiting SSO  
Cyber Security Advisor, Region VIII Region 8 – Denver, CO Rinerson, Harley harley.rinerson@hq.dhs.gov 202-809-3314
Cyber Security Advisor, Region IX Region 9 – San Francisco, CA Vacant  
Cyber Security Advisor, Region X Region 10 – Seattle, WA Vacant  
Cyber Security Advisor, Region IX Region 9 – Los Angeles, CA Edmonds, Arthur arthur.edmonds@hq.dhs.gov 415-793-7147

 

 

Ransomware Recommendations Update

Our colleagues at DHS have informed us that Microsoft has provided specific risk management steps for WannaCry at the following location:  https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/

WannaCry continues to pose significant risks and virtually any organization is at potential risk of attempted WannaCry propagation.

Ransomware Response Recommendations

Our colleagues at DHS recommend that if any of your water systems are victims of a ransomware attack, they should take the following steps:

  1. Please contact your FBI Field Office Cyber Task Force (fbi.gov/contact-us/field/field-offices) immediately to report a ransomware event and request assistance. These professionals work with state and local law enforcement and other federal and international partners to pursue cyber criminals globally and to assist victims of cyber-crime.
  2. Please report cyber incidents to the US-CERT (us-cert.gov/ncas) and FBI’s Internet Crime Complaint Center (www.ic3.gov).

For more information on cyber protections and the WannaCry Ransomware:

A Unique Resiliency Webinar Opportunity

Learn more about NIST-funded Center for Risk-Based Community Resilience Planning and how the Center is developing a computational environment to help define the attributes that make communities resilient.

DATE:              Thursday, April 27

TIME:               11:00AM- 1:00PM (eastern)

REGISTER:      https://www.youtube.com/watch?v=eyjzCDxcdSA&feature=youtu.be 

The webinar is immediately followed by a Q&A “chat” period.

A Resilient Community is one that is prepared for and can adapt to changing conditions and can withstand and recover rapidly from disruptions to its physical and social infrastructure.  Modeling community resilience comprehensively requires a concerted effort by experts in engineering social sciences and information sciences to explain how physical, economic and social infrastructure systems within a real community interact and affect recover efforts.

Join this information webinar to learn more about the Center’s recent activities. A Center overview will be followed by a session on the Center’s recent Special Issue of Resilient and Sustainable Infrastructure, which features six papers on the virtual community Centerville.  The modeling and analysis theory behind each paper will be explained.

DHS Hosts National Cyber Incident Response Plan Webinars

You are invited to attend any one of four webinars hosted by DHS to learn more about and share your thoughts on the newly released National Cyber Incident Response Plan (NCIRP).  This is an essential component of DHS’s mission to strengthen the security and resilience of the Nation by working to improve the ability of all to manage cyber incidents.

You do not need to register in advance, on the day of the event, just use the links provided in the information below.  Each one hour webinar session will cover the same information.

NCIRP Stakeholder Webinar #1

DATE:              Monday March 27, 2017

TIME:               3:00-4:00PM (eastern)

CONNECT:      https://share.dhs.gov/r3fctx11w2x/

DIAL:               1-800-320-4330/Passcode:  372094

 

NCIRP Stakeholder Webinar #2

 DATE:              Tuesday March 28, 2017

TIME:               3:00-4:00PM (eastern)

CONNECT:      https://share.dhs.gov/r8bvryj2nu9/

DIAL:               1-800-320-4330/Passcode: 372094

 

NCIRP Stakeholder Webinar #3

DATE:              Wednesday March 29, 2017

TIME:               3:00-4:00PM (eastern)

CONNECT:      https://share.dhs.gov/r6cmtu0qngo/

DIAL:               1-800-320-4330/Passcode 372094

 

NCIRP Stakeholder Webinar #4

DATE:              Thursday March 30, 2017

TIME:               3:00-4:00PM (eastern)

CONNECT:      https://share.dhs.gov/r22skziadr4/

DIAL:               1-800-320-4330/Passcode 372094

This Plan applies to cyber incidents and more specifically significant cyber incidents that are likely to result in demonstrable harm to the national security interests, foreign relations, or economy of the United States or to the public confidence, civil liberties, or public health and safety of the American people.  We plan to discuss how the NCIRP can be leveraged within your communities.

The NCIRP:

  • Describes a national approach to dealing with cyber incidents, and the important role that the private sector, States, and multiple federal agencies play in responding to incidents and how the actions of all fit together for an integrated response;
  • Reflects and incorporates lessons learned from exercises and real U.S. incidents and policy updates, such as Presidential Policy Directive (PPD)-41 on Cyber Incident Coordination Policy and the National Cybersecurity Protection Act of 2014; and
  • Reinforces and describes the roles of the lead Federal agencies during a significant cyber incident

To view the final NCIRP, visit https://www.us-cert.gov/ncirp

DHS Shares Critical Infrastructure Framework

The DHS Office of Infrastructure Protection has announced publication of the Critical Infrastructure Threat Information Sharing Framework: A Reference Guide for the Critical Infrastructure Community.

The Framework is a resource for critical infrastructure owners and operators, as well as other private sector, Federal, and State, local, tribal and territorial government partners that share threat information.  The purpose of the Framework is to describe current processes used to facilitate the flow of threat information between and among all entities involved in the critical infrastructure security and resilience mission, and provide an overview of the key threat information-sharing entities which facilitate this process. The intention is to help critical infrastructure owners and operators and other entities better understand where and how to participate in receiving and sharing threat information with information-sharing hubs.

Please share this link critical-infrastructure-threat-information-sharing-framework-final-508 with your colleagues and water utilities.