Clearance: original price $99 member, $129 nonmember
President Obama issued Executive Order 13636, “Improving Critical Infrastructure Cyber Security,” on February 12, 2013. It calls for the development of a voluntary cyber security framework that provides a “prioritized, flexible, repeatable, performance-based, and cost-effective approach” for assisting organizations responsible for critical infrastructure services to manage cyber security risk. Additionally, on February 12, 2013 the Presidential Policy Directive on Critical Infrastructure Security and Resilience was issued. It advances a national unity of effort to strengthen and maintain secure, functioning, and resilient critical infrastructure.
These presidential actions required the National Institute of Standards and Technology to develop a cyber-security risk framework for use by owners of critical infrastructure facilities. The Cybersecurity Framework includes a set of standards, methodologies, procedures, and processes that align policy, business, and technological approaches to address cyber risks. The first version of the Cybersecurity Framework incorporates voluntary consensus standards and industry best practices to the fullest extent possible.
All enterprises have a diverse set of systems and applications. Owner/operators of critical infrastructure facilities must have protocols of the critical infrastructure's enterprise system and its subordinate sub-systems in order to:
- Detect and map anomalies that will indicate exploitations of known and unknown vulnerabilities to enable a resilient posture.
- Provide a score to benchmark an organization’s cyber posture for continuous improvement.
- Provide a perpetual assessment of a facility's physical security posture.
Resilience to an all hazards threat and/or incident is the goal of this effort.
- Gain an historical view of critical infrastructure.
- Learn about the mandates levied on owners/operators of critical infrastructure facilities.
- Get recommendations for way-ahead solutions.
Owners, operators, and stakeholders of critical infrastructure facilities from all 16 critical infrastructure sectors.
The Critical Infrastructure sectors covered by the directive are: Chemical, Commercial Facilities, Communications, Critical Manufacturing, Dams, Defense Industrial Base, Emergency Services, Energy, Financial Services, Food and Agriculture, Government Facilities, Healthcare and Public Health, Information Technology, Nuclear Reactors, Materials, and Waste, Transportation Systems and Water and Wastewater Systems.
Recorded June 4, 2014.
CD box set; 90 minutes. This webinar may be eligible for up to two CPEs.