The Multi-State Information Sharing and Analysis Center (MS-ISAC) is holding its annual meeting in Nashville, TN, this week, and the focus is all about ways to strengthen partnerships. Indeed, the meetings are being held simultaneously with the GFIRST Annual Conference and the InfraGard National Congress to facilitate many joint meetings. At least 45 state governments, numerous local governments and many U.S. territories are represented at these MS-ISAC meetings, with most states having 2-3 representatives.
From the initial meeting overview and charge given by Will Pelgrin to the welcome messages Bobbie Stempfley, acting assistant secretary of the DHS Office of Cyber Security and Communications, the meetings highlighted the cyber risks and partnership examples. Even during the role call list and comments from the government representatives in the audience, the discussion topics kept coming back to ways that states and locals can work together with DHS and the MS-ISAC to improve information sharing, solve complex cyber problems and provide best practice solutions to members.
The meeting topics included break-out sessions for new members, services provided by the MS-ISAC, legal issues and legislation needed, security metrics and operations as well as other cyber issues. Each group reported out and described opportunities to work together and show value in their joint efforts. Afternoon breakout sessions included best-practice presentations from a variety of states.
Tuesday morning sessions were combined with the plenary sessions of the GFIRST conference, and the opening keynote was offered by DHS Acting Deputy Undersecretary NPPD Greg Schaffer. The Acting Undersecretary also discussed the many partnerships and changes over the past few years in the cyber activities within the federal and state governments. He described advancements in EINSTEIN, Trusted Internet Connections (TIC), Cyberstorm Exercises, The National Strategy for Trusted Identities in Cyberspace (NSTIC), the important paper on a healthy cyber ecosystem and the International Strategy for Cyberspace. The address also discussed advances in awareness and training, and reminded the audience about current cybersecurity awareness month plans.
In each case, Mr. Schaffer emphasized the importance of partnerships. From the public sector working with the private sector to the local governments working with states and federal agencies, he highlighted the importance of a business perspective with measureable results. He challenged the audience that “gets it” to carry the message to CFOs and CEOs across America who need to act as well.
The opening keynote closed with highlights of upcoming cyber legislation which will:
- Clarify authorities
- Enhance penalties for cyber crime
- Add mandatory requirements for protecting critical infrastructure – with private sector buy-in into specifics
Bottom line, the entire set of cyber sessions that I attended over several days focused on new and stronger partnerships. I really like what Cheri McGuire from Symantec said in summary during an afternoon panel:
Partnership Goals include –
1) Managing Risk
2) Improving Resiliency
3) Collaboration and Coordination
It was great to see that message in action over the past several days. If your state is not involved, I urge you to engage in these essential discussions regarding cyber and critical infrastructure partnerships.
Any thoughts on the MS-ISAC meetings or GFIRST 2011?
Daniel J. Lohrmann is an internationally recognized cybersecurity leader, technologist, keynote speaker and author.
During his distinguished career, he has served global organizations in the public and private sectors in a variety of executive leadership capacities, receiving numerous national awards including: CSO of the Year, Public Official of the Year and Computerworld Premier 100 IT Leader.
Lohrmann led Michigan government’s cybersecurity and technology infrastructure teams from May 2002 to August 2014, including enterprisewide Chief Security Officer (CSO), Chief Technology Officer (CTO) and Chief Information Security Officer (CISO) roles in Michigan.
He currently serves as the Chief Security Officer (CSO) and Chief Strategist for Security Mentor Inc. He is leading the development and implementation of Security Mentor’s industry-leading cyber training, consulting and workshops for end users, managers and executives in the public and private sectors. He has advised senior leaders at the White House, National Governors Association (NGA), National Association of State CIOs (NASCIO), U.S. Department of Homeland Security (DHS), federal, state and local government agencies, Fortune 500 companies, small businesses and nonprofit institutions.
He has more than 30 years of experience in the computer industry, beginning his career with the National Security Agency. He worked for three years in England as a senior network engineer for Lockheed Martin (formerly Loral Aerospace) and for four years as a technical director for ManTech International in a US/UK military facility.
Lohrmann is the author of two books: Virtual Integrity: Faithfully Navigating the Brave New Web and BYOD for You: The Guide to Bring Your Own Device to Work. He has been a keynote speaker at global security and technology conferences from South Africa to Dubai and from Washington, D.C., to Moscow.
He holds a master's degree in computer science (CS) from Johns Hopkins University in Baltimore, and a bachelor's degree in CS from Valparaiso University in Indiana.
Follow Lohrmann on Twitter at: @govcso
Building effective virtual government requires new ideas, innovative thinking and hard work. From cybersecurity to cloud computing to mobile devices, Dan discusses what’s hot and what works in the world of gov tech.