HOMELAND SECURITY ADVISORY COUNCIL Critical Infrastructure ...
Transcript of HOMELAND SECURITY ADVISORY COUNCIL Critical Infrastructure ...
1
HOMELAND SECURITYADVISORY COUNCIL
Critical Infrastructure Task Force
Progress Report to the Homeland Security Advisory Council
Washington, DC, June 23, 2005
2
The Charter
Review current and provide recommendations on advancing national critical infrastructure policy & planning to ensure the reliabledelivery of critical infrastructure services while simultaneously reducing the consequences of the exploitation, destruction, or disruption of critical infrastructure products, services, and/or operations.
3
The Membership• Dr. Ruth David (Chair)• Erle Nye (Vice-Chair)• Duane Ackerman• William Bryan (DoD)• Frank Cilluffo• Deputy Commissioner
Frank Cruthers• Judge Robert Eckels• Supervisor Don Knabe• MG (Ret.) Bruce Lawlor• Peggy Merriss
• Judith Mueller • Governor Mitt Romney• Chief Gary Scott• Bill Whitmore• Mayor Anthony Williams• Houston Williams• Dr. John “Skip” Williams• BG (Ret) Allan Zenowitz• Dan Ostergaard (Exec Dir
HSAC)• Jeff Gaynor (DFO)
4
The Government
• Robert Stephan, Assistant Secretary, Infrastructure Protection, DHS
• William Bryan Director, Critical Infrastructure, Office of the Secretary of Defense James Caverly, Infrastructure Coordination Division, DHS
• Tom Dinano, Acting Deputy IP, DHS
• SSA Art Fiero, FBI/DHS, Director, HSIN-CI
• Dr. Mary Ellen Hynes, CIP Portfolio Manager, S&T Organization, DHS
• Steve Malphrus, Staff Director, Board of Directors, Federal Reserve Bank
• William Parks, Transmission Reliability Office, Department of Energy
5
The Practitioners • Richard Arns, CEO, The
Security Board • Dennis Dorsey, Director of
Security, Northpark Mall, Dallas, TX
• Jeff Friedland, Director of Emergency Services, St. Clair County, Michigan
• Dr. Sean Gorman, Infrastructure Mapping Project, George Mason University.
• Robert Greenberg, G&H International Services Inc
• Stephen Iannucci – Vice President, Crisis Management, Citigroup
• Leo McCann Business Continuity Manager, American Electric Power
• Bill Ramsey, McCormick & Company
6
The Practitioners2
• Jeff Reed, City of Danville, Virginia
• James Savage, Chief of Security Operations, Hunt Oil Co.
• David Shepherd, Director of Security, The Venetian Hotel, Las Vegas, NV
• Rick Stephens, Sr. Vice President, Boeing Corp
• Mr. Steve Trevino, President, Global Resiliency Inc.
• Dr. Penny Turnbull, Sr. Director Business Continuity, Marriott International
• Jack Williams, President and CEO, Royal Caribbean & Celebrity Cruises
7
The CITF’s Activities to Date• Charlotte, NC – The Weston Charlotte
– Focus on existing DHS and emerging domestic and international Critical Infrastructure Resilience policy
• Monterey, California – Naval Postgraduate School (two days)– Focus on Private Sector Business Continuity and
Defense Department “Mission Assurance” objectives
• Washington, D.C. – The Federal Reserve– Focus on National Resilience Initiatives
8
Why Resilience
Risk = f[Threat] f[Vulnerability] f[Consequence]
Protection: To keep from harm, attack or injury.
Resilience: An ability to recover from or adjust easily to misfortune or change.
CITF Observation: Resilience is well-aligned with risk management strategy.
9
Corroborating Examples• International and Domestic Focus on Continuity
– Foreign government’s and organizations are focusing on infrastructure resiliencyGreat Britain Italy France
Singapore European Union– Emerging practice within US private sector
• Builds on Y2K Experience; 9/11 provided additional stimulus• Consistent with “Due Care”CITF Observation: Resilience-based planning is not new but appears to be gaining momentum.
10
Holistic Approach .
CITF Observation: Focus on resilience drives comprehensive planning.
• Not all Critical Infrastructures are networked, but virtually all are increasingly dependent on networks (Telecommunications Infrastructure)– Physical and cyber security planning must be tightly coupled
• Critical Infrastructures may be:– Targets– Delivery Systems– Weapons– Collateral Damage
11
The Path Forward• Government, Government, and Private Sector
Critical Infrastructure objectives must be aligned.– The Private Sector owns and operates >85% of critical
infrastructure• Need to close the gap between mandated CIP
requirements, governance and the reality of Critical Infrastructure ownership and operation
CITF Observation: Resilience may offer the “business case” that is needed.