Department of Homeland Security, National Cyber Security Division, Strategy for Securing Control Systems: Coordinating and Guiding Federal, State, and Private Sector Initiatives (Oct. 2009) (full-text).
The Strategy was created by the DHS’s National Cyber Security Division (NCSD) as part of the overall mission to coordinate and lead efforts to improve control systems security in the U.S.’s critical infrastructures. The primary goal of the Strategy is to build a long-term common vision where effective risk management of control systems security can be realized through successful coordination efforts. Implementing the Strategy will create a common vision with respect to participation, information sharing, coalition building, and leadership activities. Its implementation will improve coordination among relevant stakeholders within government and private-sector, thereby reducing cybersecurity risks to control systems.
The Strategy leverages the risk management framework and partnership model described in the NIPP, by providing a path forward for coordination among CIKR stakeholders, government, and industry associations within the NIPP public-private sector partnership. Multiple programs and activities within the sponsorship and participation of the NIPP public-private partnerships, and independently in industry, are increasing the opportunities and need for coordinated actions. The “coordination landscape” is defined by the Strategy and includes activities which will enhance the nation’s security posture.
Coordination mechanisms for critical infrastructure protection have been created or enhanced by national strategies, policies, and plans such as the NIPP. These mechanisms include the Critical Infrastructure Partnership Advisory Council (CIPAC), which is an enabler of public-private collaboration and partnership coordination around critical infrastructure protection issues among a key set of vetted participants, the Federal Control Systems Security Working Group (Federal Partners) hosted by the NCSD, and private sector industry organizations, academia, standards bodies, and Information Sharing and Analysis Centers (ISACs). This same landscape approximates the breadth and depth of resources committed to address control systems security.
The overarching control systems security Strategy, established to coordinate federal, state, and private sector initiatives, has two principal components: (1) a new CIPAC entity known as the Industrial Control Systems Joint Working Group (ICSJWG), and (2) an expanded Industrial Control Systems Cyber Emergency Response Team (ICS-CERT), managed by the Control Systems Security Program (CSSP), that provides recognized cyber incident response and analysis capabilities in conjunction with the United States Computer Emergency Readiness Team (US-CERT).