The National Cyber Security Division (NCSD) is a subdivision of the Department of Cyber Security and Communications of the US Department of Homeland Security [1] . Formed on June 6, 2003 on the basis of the Office for the Protection of Essential Infrastructure Facilities, the National Center for the Protection of Infrastructure, the Federal Center for Computer Incidents and the . NCSD's mission is to work with the private sector, government, military and intelligence agencies to assess risks and reduce vulnerabilities and threats in information technology and devices that affect the functioning of critical IT infrastructures of the US government and the private sector. NCSD also provides vulnerability analysis, early warning and assistance in responding to computer incidents for the public and private sectors. NCSD fulfills most of the ministry ’s tasks assigned to it through the comprehensive national cybersecurity initiative . NCSD's budget for fiscal year 2011 was $ 378 million. The current NCSD director, John Streifert, a former chief information security officer at the US Department of State [2] [3] , took office in January 2012.
The audit of the Office’s first year by inspector of the ministry, sharply criticized the results of its activities. The inspector's report noted both the achievement and creation of the Computer Emergency Response Team and the Computer Emergency Preparedness Team (US-CERT), but overall, the Office was criticized for failing to achieve priorities, developing strategic plans, and providing effective leadership [4] [5] .
Content
Strategic Goals and Priorities of the Office
Strategic Goals
- Creation and maintenance of an effective national system for responding to incidents in cyberspace [6] ;
- Implementation of a risk management program to protect critical infrastructure [6] .
Priorities
- Continuing the implementation of the Einstein program as an important cyber defense tool for civilian departments and federal executive authorities;
- Development of a National Cyber Incident Response Plan (NCIRP) in collaboration with the private sector and other stakeholders;
- Improving the security of management systems, which are elements of a critical national infrastructure.
Organization and financing
NCSD is funded by the following three programs, projects, and events approved by Congress: US Computer Emergency Preparedness Team (US-CERT), Strategic Initiatives, and Advocacy Program [6] :
- US-CERT uses the competencies of think tanks to build a knowledge base and practices in the field of cybersecurity. US-CERT is a single center of support for federal authorities in the preparation of decisions to ensure the protection of civilian computer networks of the federal executive branch. US-CERT analyzes threats and vulnerabilities, disseminates information about possible cyber threats, coordinates its activities with partners and clients to achieve a general awareness of the state of the country's cyber infrastructure. US-CERT also implements a national cybersecurity system, known as Einstein programs, within its budget. The Einstein program is an automated system for collecting, analyzing, and sharing information in the field of computer security for the federal government in order to raise awareness nationwide. The Department of Homeland Security is deploying Einstein-1 and Einstein-2 systems in conjunction with a federal initiative that optimizes network security capabilities for the federal executive. As of March 2012, the Einstein-3 system is being deployed in a number of US federal agencies.
- The National Cybersecurity Center (NCSC) is funded by the US-CERT budget. As outlined in Presidential National Security Directive 54 / Presidential National Security Directive 23 [7] , the NCSC fulfills its presidential mandate so that federal authorities can gain access to the information necessary to carry out their cybersecurity missions. NCSC solves this problem in the following areas: integration, cooperation and coordination, situational awareness and response to computer incidents, analysis and reporting, knowledge management, and development and management technologies.
- Strategic initiatives allow the Office to create mechanisms for federal partners to optimize the cost of IT infrastructure and create an environment for joint activities that allows for the exchange of best practices. In addition, Strategic Initiatives allow you to develop and publish best practices for software developers , IT security professionals, and other interested participants in critical infrastructure and Key Resources , as well as collaborate with the public and private sectors. to evaluate and reduce risks.
- An outreach program helps attract public and private partners to address cybersecurity issues. It assists the Office and assists in the development of its policies and resource requirements for complex activities.
See also
- US Emergency Computer Team
- Integrated National Cybersecurity Initiative
Notes
- ↑ DHS | National Cyber Security Division (link unavailable) . Dhs.gov (October 3, 2010). Date of treatment May 12, 2012. Archived May 15, 2012.
- ↑ Exclusive: State's Streufert moving to DHS . FederalNewsRadio.com (January 13, 2012). Date of treatment May 12, 2012.
- ↑ Noland, Katelyn Report: DHS Names Cybersecurity Director . Executivegov.com (January 13, 2012). Date of treatment May 12, 2012.
- ↑ DHS puts Zitz in charge of cybersecurity division . Searchsecurity.techtarget.com (July 27, 2006). Date of treatment May 12, 2012.
- ↑ Top US Cyber-Security Official Resigns , washingtonpost.com (October 2, 2004). Date of treatment May 12, 2012.
- ↑ 1 2 3 DHS: Testimony of Deputy Under Secretary Philip Reitinger and Deputy Assistant Secretary RADM Michael Brown, National Protection and Programs Directorate, before the House Appropriations Committee, on the Department of Homeland Security Fiscal Year 2011 Cybersecurity Budget Request . Dhs.gov. Date of treatment May 12, 2012.
- ↑ The Comprehensive National Cybersecurity Initiative | The White House . Whitehouse.gov. Date of treatment May 12, 2012.