NSTAC, Cybersecurity Collaboration Task Force, Cybersecurity Collaboration Report: Strengthening Government and Private Sector Collaboration Through a Cyber Incident Detection, Prevention, Mitigation, and Response Capability (May 21, 2009) (full-text).
The Task Force's primary finding was that the integrated, operational information sharing and cyber response mechanisms needed to adequately address the cyber threat do not exist today. Given the threat environment, and the global reliance upon cyber technologies and networks, a national capability to prevent, detect, mitigate, and respond to cyber incidents of national consequence in a timely, effective manner is critical to national security.
Although a variety of strategic, policy, and legal issues are associated with our Nation's ability to safely and effectively operate in cyberspace, the most significant gap is the lack of an operational mechanism for the Government and private sector to collaborate and coordinate during cyber events.
This recommendation proposed establishing a Government-sponsored Joint Coordinating Center (JCC) for public and private sector representatives from various Critical infrastructure and key resources sectors following the aggressive, phased approach described in the report.
Specifically, the JCC would initially build upon the current coordination/collaboration capabilities of the National Coordinating Center and the U.S. Computer Emergency Readiness Team, and incorporate other existing cyber incident monitoring and response public-private entities. The JCC capability should be located in a Government facility with around-the-clock operations and supporting tools and collaboration capabilities. The JCC's primary mission would focus on robust information-sharing for developing and sharing cyber situational awareness, and would institutionalize the time-sensitive processes and procedures to detect, prevent, mitigate, and respond to cyber incidents of national consequence.