The Resource Critical infrastructure protection : DHS needs to fully address lessons learned from its first Cyber Storm exercise : report to congressional requesters, [GAO contact, David A. Powner]

Critical infrastructure protection : DHS needs to fully address lessons learned from its first Cyber Storm exercise : report to congressional requesters, [GAO contact, David A. Powner]

Label
Critical infrastructure protection : DHS needs to fully address lessons learned from its first Cyber Storm exercise : report to congressional requesters
Title
Critical infrastructure protection
Title remainder
DHS needs to fully address lessons learned from its first Cyber Storm exercise : report to congressional requesters
Statement of responsibility
[GAO contact, David A. Powner]
Title variation
  • Critical infrastructure protection
  • DHS needs to fully address lessons learned from its first Cyber Storm exercise
Title variation remainder
Department of Homeland Security needs to fully address lessons learned from its first Cyber Storm exercise
Creator
Contributor
Author
Subject
Genre
Language
eng
Summary
  • Activities. However, key activities have not yet been completed. Specifically, DHS identified 16 activities as ongoing and 7 activities as planned for the future. Further, while DHS has identified completion dates for its planned activities, it has not identified completion dates for its ongoing activities. Until DHS schedules and completes its remaining activities, the agency risks conducting subsequent exercises that repeat the lessons learned during the first exercise. Commenting on their experiences during the second Cyber Storm exercise, in March 2008, participants observed both progress and continued challenges in building a comprehensive national cyber response capability. Their observations addressed several key areas, including the value and scope of the exercise, roles and responsibilities, public relations, communications, the exercise infrastructure, and the handling of classified information. For example, many participants reported that their organizations found value in the exercise because it led them to update their contact lists and improve their response capabilities. Other participants, however, reported the need for clarifying the role of the law enforcement community during a cyber incident and for improving policies governing the handling of classified information so that key information can be shared. Many of the challenges identified during Cyber Storm II were similar to challenges identified during the first exercise
  • Federal policies establish the Department of Homeland Security (DHS) as the focal point for the security of cyberspace. As part of its responsibilities, DHS is required to coordinate cyber attack exercises to strengthen public and private incident response capabilities. One major exercise program, called Cyber Storm, is a large-scale simulation of multiple concurrent cyber attacks involving the federal government, states, foreign governments, and private industry. To date, DHS has conducted Cyber Storm exercises in 2006 and 2008. GAO agreed to (1) identify the lessons that DHS learned from the first Cyber Storm exercise, (2) assess DHS's efforts to address the lessons learned from this exercise, and (3) identify key participants' views of their experiences during the second Cyber Storm exercise. To do so, GAO evaluated documentation of corrective activities and interviewed federal, state, and private sector officials. As a result of its first Cyber Storm exercise, in February 2006, DHS identified eight lessons that had significant impact across sectors, agencies, and exercise participants. These lessons involved improving (1) the interagency coordination groups; (2) contingency planning, risk assessment, and roles and responsibilities; (3) integration of incidents across infrastructures; (4) access to information; (5) coordination of response activities; (6) strategic communications and public relations; (7) processes, tools, and technology; and (8) the exercise program. While DHS has demonstrated progress in addressing the lessons it learned from its first Cyber Storm exercise, more remains to be done to fully address the lessons. In the months following its first exercise, DHS identified 66 activities that address one or more of the lessons, including hosting meetings with key cyber response officials from foreign, federal, and state governments and private industry, and refining their operating procedures. To date, DHS has completed a majority of these
Member of
Cataloging source
UMI
http://bibfra.me/vocab/lite/collectionName
ProQuest U.S. Congressional Research Digital Collection
http://library.link/vocab/creatorName
Powner, David A
Government publication
federal national government publication
Index
no index present
LC call number
KF49
LC item number
.C59 CMP-2008-GAO-0381 ONLINE
Literary form
non fiction
Nature of contents
dictionaries
http://library.link/vocab/relatedWorkOrContributorName
  • United States
  • United States
Series statement
Committee print
http://library.link/vocab/subjectName
  • Cyberterrorism
  • Cyberterrorism
  • War games
Label
Critical infrastructure protection : DHS needs to fully address lessons learned from its first Cyber Storm exercise : report to congressional requesters, [GAO contact, David A. Powner]
Instantiates
Publication
Note
  • Committee print
  • Record is based on bibliographic data in ProQuest U.S. Congressional Research Digital Collection. Reuse except for individual research requires license from ProQuest, LLC
Antecedent source
mixed
Carrier category
online resource
Carrier category code
cr
Carrier MARC source
rdacarrier
Color
black and white
Content category
text
Content type code
txt
Content type MARC source
rdacontent
Contents
CMP-2008-GAO-0381
Control code
cmp200405033
Dimensions
unknown
Extent
1 online resource (ii, 34 pages)
File format
one file format
Form of item
online
Level of compression
mixed
Media category
computer
Media MARC source
rdamedia
Media type code
c
Other physical details
digital, PDF file
Quality assurance targets
present
Reformatting quality
preservation
Reproduction note
Electronic reproduction.
Specific material designation
remote
System control number
cmp200405033
System details
System requirements: PDF reader software
Label
Critical infrastructure protection : DHS needs to fully address lessons learned from its first Cyber Storm exercise : report to congressional requesters, [GAO contact, David A. Powner]
Publication
Note
  • Committee print
  • Record is based on bibliographic data in ProQuest U.S. Congressional Research Digital Collection. Reuse except for individual research requires license from ProQuest, LLC
Antecedent source
mixed
Carrier category
online resource
Carrier category code
cr
Carrier MARC source
rdacarrier
Color
black and white
Content category
text
Content type code
txt
Content type MARC source
rdacontent
Contents
CMP-2008-GAO-0381
Control code
cmp200405033
Dimensions
unknown
Extent
1 online resource (ii, 34 pages)
File format
one file format
Form of item
online
Level of compression
mixed
Media category
computer
Media MARC source
rdamedia
Media type code
c
Other physical details
digital, PDF file
Quality assurance targets
present
Reformatting quality
preservation
Reproduction note
Electronic reproduction.
Specific material designation
remote
System control number
cmp200405033
System details
System requirements: PDF reader software

Library Locations

    • Pardee Legal Research CenterBorrow it
      5998 Alcalá Park, San Diego, CA, 92110-2492, US
      32.771471 -117.187496
Processing Feedback ...