1
National Cyber Security Division
HomelandSecurity
U.S. Department of Homeland SecurityU.S. Department of Homeland Security
2
National Cyber Security Division
HomelandSecurity
The Cyber Threat
Many Actors• Nation States
• Organized Crime
• Hackers/Hactivists
• Insiders
Risk is evolving
3
HomelandSecurity
National Cyber Security Division
Cybersecurity is a National Priority
3
“Safeguarding and securing cyberspace has become one of the homeland security community’s most important missions. Our vision is a cyberspace that supports a secure and resilient infrastructure, that enables innovation and prosperity, and that protects privacy and other civil liberties by design.”
DHS Quadrennial Homeland Security Review, February 2010
“From now on, our digital infrastructure -- the networks and computers we depend on every day -- will be treated as they should be: as a strategic national asset. Protecting this infrastructure will be a national security priority. We will ensure that these networks are secure, trustworthy and resilient. We will deter, prevent, detect, and defend against attacks and recover quickly from any disruptions or damage.”
President Obama, May 2009
4
National Cyber Security Division
HomelandSecurity
Appoint a cybersecurity policy official to coordinate the Nation’s cybersecurity policies and activities.
Prepare for the President’s approval an updated national strategy to secure the ICT infrastructure.
Designate cybersecurity as one of the President’s key management priorities and establish performance metrics.
Designate a privacy and civil liberties official to the National Security Council cybersecurity directorate.
Conduct interagency-cleared legal analyses of priority cybersecurity-related issues.
Initiate a national awareness and education campaign to promote cybersecurity.
Develop an international cybersecurity policy framework and strengthen our international partnerships.
Prepare a cybersecurity incident response plan and initiate a dialog to enhance public-private partnerships.
Develop a framework for research and development strategies that focus on game-changing technologies.
Build a cybersecurity-based identity management vision and strategy, leveraging privacy-enhancing technologies.
President’s Cyberspace Policy Review
5
National Cyber Security Division
HomelandSecurity
DHS Cyber ResponsibilitiesHelping Federal Executive Branch civilian departments and
agencies secure their unclassified networks (.gov). • The Civil-Federal Sector of the U.S. Government includes all of the Executive
Branch except the Department of Defense (DoD). It includes 118 Departments and Agencies (D/A).
Working with owners and operators of critical infrastructure and key resources (CIKR)—whether private sector, state, or municipality-owned—to bolster their cybersecurity.
Leading and coordinating cyber incident response.
5
6
National Cyber Security Division
HomelandSecurity
NIST LEAD
7
National Cyber Security Division
HomelandSecurity
DHS PROGRAMS WITHIN NICE
Federal Cybersecurity Training Events
SPECIALTY AREA FRAMEWORK
NATIONAL CENTERS OF ACADEMIC EXCELLENCE
NATIONAL INSTITUTE FOR CYBERSECURITY STUDIES
www.DHS.gov/StopThinkConnect 8
The Stop.Think.Connect. (STC) Campaign launched in October 2010 in conjunction with National Cybersecurity Awareness Month
Stop.Think.Connect. is part of an unprecedented effort among Federal and State governments, industry, and non-profit organizations to promote safe online behavior and practices
The Stop.Think.Connect. Campaign’s overarching goal is to help Americans understand not only the risks that come with using the Internet, but also the importance of practicing safe online behavior
Since October 2010, the Campaign has focused on the following programs to increase awareness:
• Friends of the Campaign Program
• Cyber Citizen Forums
• Cyber Awareness Coalition
• PSA Challenge
About Stop.Think.Connect
9
National Cyber Security Division
HomelandSecurity
9
The President designated October as National Cyber Security Awareness Month. Now in its seventh year, NCSAM is designed to engage and educate public and private sector partners through events and initiatives with the goal of raising awareness about cybersecurity.
As in past years, the 2011 overarching “umbrella” theme will remain “Our Shared Responsibility” to reflect the interconnectedness of the modern world and the message that all computer users have a role to play to secure cyberspace.
However, in order to better organize the month and our key messaging to ensure sustained momentum, DHS will be highlighting four distinct weekly cybersecurity themes. Each week there will theme-specific releases and events.
Theme 1 – Our Shared Responsibility and Stop. Think. Connect. Theme 2 – Formal Education and Workforce Development Theme 3 – Cybercrime and Law Enforcement Theme 4 – Online Safety for Small and Medium Sized Business
http://www.staysafeonline.org/cybersecurity-awareness-month/banners-and-more
10
HomelandSecurity
National Cyber Security Division
Partnership with EDUCAUSE/REN-ISAC
Engaged through the Cross Sector Cyber Security Working Group
Operational engagement through the REN-ISAC• Expanding information sharing initiative begun with FS ISAC
• On-site at the National Cybersecurity and Communications Integration Center
• Sharing products
• Analyst to analyst collaboration
How can we learn from you?
11
National Cyber Security Division
HomelandSecurity
Additional Information
DHS National Cyber Security Division: http://www.dhs.gov/cyber
US-CERT: http://www.us-cert.gov/
National Cyber Security Alliance (NCSA): www.staysafeonline.org
Multi-State Information Sharing and Analysis Center (MS-ISAC): http://www.msisac.org/
Stop.Think.Connect: www.stopthinkconnect.org
12
National Cyber Security Division
HomelandSecurity