Developing Emergency Support Function (ESF) no. 18
Dave Sweigert, EMS, CISSP, CISA, PMP
February, 2014

Dave Sweigert, EMS...
Intended audience
• Managers of political sub-divisions, nonprofit organizations, corporations and
others tasked with plan...
Objective
• Provide awareness of cyber terrorism and
cyber warfare threats
• Create awareness of Emergency Support
Functio...
BACKGROUND

Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Evolving impacts of cyber attacks
• Cyber warfare activities
• Part of coordinated multi-disciplinary
attacks (bio, chemic...
No longer just a “data breach” problem
• Public safety systems can be comprised
to put response activities in the dark
• D...
CYBER WARFARE &
CYBER TERRORISM

Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Dave Sweigert, EMS, PMP, CISA,
CISSP

2/1/2014
Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
EMERGENCY
MANAGEMENT (EM)
AND CYBER RESPONSE

Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Coordinating cyber response
• Emergency Support Functions (ESFs)
provide buckets of disciplines to help
manage incident re...
Emergency Support Function (ESF):
• ESFs provide for a coordinated response
• ESFs used to plan in all four (4) phases of
...
Emergency Support Function (ESF):
• ESF support for communications and
shared messaging to avoid contradictory
statements ...
Emergency Support Function (ESF):
• ESFs are the grouping of governmental and
certain private sector capabilities into an
...
Traditional ESFs

Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
UNDERSTANDING
CYBER RESPONSE
CAPABILITIES

Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
ESF 18 – catalogue capabilities
• Rapid deployment of basic Internet
services following destruction of
infrastructure?

• ...
CONCLUSION

Dave Sweigert, EMS, PMP, CISA, CISSP

2/1/2014
ESF 18 – Cyber Security / Response
• Developing area of Emergency
Management (EM)
• Understand the significance of cyber
w...
About the author:
An Air Force veteran, Dave Sweigert acquired significant
security engineering experience with military a...
Upcoming SlideShare
Loading in...5
×

Awareness of Cyber Security - Response for Emergency Support Function 18 planning

301

Published on

Building Awareness for Cyber Events

Integration of cyber response into emergency management planning.

Development of cyber defense capabilities.

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
301
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
0
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Transcript of "Awareness of Cyber Security - Response for Emergency Support Function 18 planning"

  1. 1. Developing Emergency Support Function (ESF) no. 18 Dave Sweigert, EMS, CISSP, CISA, PMP February, 2014 Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  2. 2. Intended audience • Managers of political sub-divisions, nonprofit organizations, corporations and others tasked with planning for an integrated response to a disaster or emergency incident that may involve issues related to cyber security or cyber terrorism. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  3. 3. Objective • Provide awareness of cyber terrorism and cyber warfare threats • Create awareness of Emergency Support Function no. 18 – Cyber Security/Response • Highlight challenges to emergency management of cyber events Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  4. 4. BACKGROUND Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  5. 5. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  6. 6. Evolving impacts of cyber attacks • Cyber warfare activities • Part of coordinated multi-disciplinary attacks (bio, chemical, infrastructure) • Disruption of critical infrastructure • (grid down, loss of Internet, terrorism). Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  7. 7. No longer just a “data breach” problem • Public safety systems can be comprised to put response activities in the dark • Disruptions of public alert and warning systems to increase terror in public • Illegitimate social media hacks to provide false and misleading press releases Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  8. 8. CYBER WARFARE & CYBER TERRORISM Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  9. 9. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  10. 10. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  11. 11. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  12. 12. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  13. 13. EMERGENCY MANAGEMENT (EM) AND CYBER RESPONSE Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  14. 14. Coordinating cyber response • Emergency Support Functions (ESFs) provide buckets of disciplines to help manage incident response • ESF 18 – Cyber Security/Response – a developing area to support comprehensive emergency management with cyber capabilities Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  15. 15. Emergency Support Function (ESF): • ESFs provide for a coordinated response • ESFs used to plan in all four (4) phases of EM: Mitigation, Preparedness, Response, Recovery • ESFs offer a coordinating structure • ESFs help coordinate information flow Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  16. 16. Emergency Support Function (ESF): • ESF support for communications and shared messaging to avoid contradictory statements and assessments • Promotes common operating picture • Organizes and identifies overlapping functions (e.g., ESF – 2 Communications) Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  17. 17. Emergency Support Function (ESF): • ESFs are the grouping of governmental and certain private sector capabilities into an organizational structure to provide support, resources, program implementation, and services that are most likely needed to save lives, protect property and the environment, restore essential services and critical infrastructure, and help victims and communities return to normal following domestic incidents. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  18. 18. Traditional ESFs Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  19. 19. UNDERSTANDING CYBER RESPONSE CAPABILITIES Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  20. 20. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  21. 21. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  22. 22. ESF 18 – catalogue capabilities • Rapid deployment of basic Internet services following destruction of infrastructure? • Use of technical specialists to defend against aggressive cyber attacks? • Coordination of network monitoring and restoral activities for critical public safety systems (911 dispatch, radio, comm)? Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  23. 23. CONCLUSION Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  24. 24. ESF 18 – Cyber Security / Response • Developing area of Emergency Management (EM) • Understand the significance of cyber warfare and cyber terrorism • Build awareness of integrating cyber response planning into overall EM plans (EOPs, continuity plans, etc.) Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014
  25. 25. About the author: An Air Force veteran, Dave Sweigert acquired significant security engineering experience with military and defense contractors before earning two Masters’ degrees (Project Management and Information Security). He holds the following certifications: California Emergency Management Specialist (EMS), Project Management Professional (PMP) , Certified Information Security Systems Professional (CISSP), and Certified Information Systems Auditor (CISA). Mr. Sweigert has over twenty years experience in information assurance, risk management, governance frameworks and litigation support. Dave Sweigert, EMS, PMP, CISA, CISSP 2/1/2014

×