above my pay grade
play

Above My Pay Grade: Incident Response at the National Level Jason - PowerPoint PPT Presentation

Sep 15, 2023 •266 likes •541 views

Above My Pay Grade: Incident Response at the National Level Jason Healey Atlantic Council Traditional Incident Response But at the national level, incident response is a different game Implications for Misunderstandings between geeks and

  1. Above My Pay Grade: Incident Response at the National Level Jason Healey Atlantic Council

  2. Traditional Incident Response

  3. But at the national level, incident response is a different game Implications for • Misunderstandings between geeks and wonks • Attribution • Decision making • Large-scale response (or miscalculations about response)

  4. EXAMPLE: LARGE SCALE ATTACK ON FINANCE

  5. Large-scale Attack on Finance Sector Who Is Their First External Call To? Bank A Bank B Exchange Clearing House

  6. First: Call a Law Firm!

  7. Then Mandiant or CrowdStrike!

  8. After That: Tell the Cops… Bank A Bank B Exchange FBI Clearing House USSS

  9. Then Share within the Sector • Operational sharing and crisis management • Shared with all financial institutions Bank A • Sector-wide incident response via audioconfernce ‘bridge’ line Bank B • Typically heard: FS/ISAC • “What’s the vulnerability?” • “Is there a patch?” Exchange • What IP addresses? • “What works to mitigate? Clearing House

  10. When More than Tech Discussions Are Needed… Policy-Level Incident Response • Senior company and government FSSCC FBIIC executives across all sector and Bank A regulators • Management response via audio Bank B bridge FS/ISAC • Typically heard: • “How healthy is the sector?” Exchange • “What do we do if it gets Other ISACs worse?” Water, Energy, Telecom… Clearing House • “Can markets open as normal tomorrow?”

  11. If Markets are Melting… Treasury Within Treasury • Escalate to the senior leadership, FSSCC FBIIC especially political appointees Bank A Bank B FS/ISAC Exchange Other ISACs Water, Energy, Telecom… Clearing House

  12. If Markets are Melting… President’s Working Group on Financial Markets Treasury Highest Level of Financial Decision-making FSSCC FBIIC • No different than any other Bank A financial crisis! • Secretary, Chairs of FRB, SEC, Bank B CFTC FS/ISAC Exchange Other ISACs Water, Energy, Telecom… Clearing House

  13. The Cyber Response… President’s Working Group Department of Homeland Security on Financial Markets • But what does that actually mean? • And what then? Treasury FSSCC FBIIC Bank A DHS Bank B FS/ISAC Exchange Other ISACs Water, Energy, Telecom… Clearing House

  14. The Cyber Response… President’s Working Group on Financial National Cybersecurity and Markets Communications Integration Center • 24/7 operations floor Treasury • Includes US-CERT, ICS-CERT, NCC FSSCC FBIIC Bank A DHS Bank B NCICC FS/ISAC Operations Planning Analysis Watch & Warning Assist & Assess Liaison Exchange DHS CIA DoD Other ISACs Water, Energy, Telecom… Treasury FS-ISAC State & Local Clearing House FBI Justice NSA USSS Others State

  15. If Incident Needs Escalation A “ Significant Cyber Incident … requires increased national coordination” as it affects • National security • Public health and public safety • National economy, including any of the individual sectors that may affect the national economy or • Public confidence Cyber Unified Coordination Group Bank A Cyber UCG IMT NTOC Bank B DHS FS/ISAC NCCIC Exchange USCC Operational Response Other ISACs Water, Energy, Telecom… Clearing House Telcos

  16. Who Coordinates Above DHS?

  17. Who Coordinates Above DHS?

  18. Who Coordinates Above DHS?

  19. If Incident Needs Escalation National Security Council Policy Response Cyber Directorate ICI-IPC Cyber Response Group Bank A Bank B DHS DHS CIA DoD FS/ISAC NCCIC FBI NSA State Exchange Operational Response Others Other ISACs Water, Energy, Telecom… Clearing House “The Interagency”

  20. If Incident Needs Escalation National Security Council Policy Response Deputies Committee Cyber Directorate ICI-IPC Cyber Response Group Bank A Bank B DHS DHS CIA DoD FS/ISAC NCCIC FBI NSA State Exchange Operational Response Others Other ISACs Water, Energy, Telecom… Clearing House “The Interagency”

  21. If Incident Needs Escalation President of the United States Policy Response Principals Committee Deputies Committee Cyber Directorate ICI-IPC Cyber Response Group Bank A Bank B DHS DHS CIA DoD FS/ISAC NCCIC FBI NSA State Exchange Operational Response Others Other ISACs Water, Energy, Telecom… Clearing House “The Interagency”

  22. Why This Works • Since – Worst-impact cyber conflicts generally caused by nations, not individuals and – Cyber conflicts tend not to be “network speed” • Process translates “cyber crisis” out of technical channels • Into the time-tested traditional national security crisis management • Countries with NSC equivalents have natural edge to those without … like China

  23. Why This is a Good Thing: Provides Process for Tough Decisions • Enables national-level technical response options • Commitment of additional resources to help private sector response – Money, personnel, intelligence • Determine “ what nation is responsible? ” • Enables response using levers of national power: – Diplomatic, economic and yes, military

  24. Why the Process Might Not Work or Otherwise Suck: • It doesn’t always work even for physical crises! • When government wants to control the response • The “Katrina” of something on the edges of the system • The “Six - Day War” • True Cyber War

  25. Why the Process Might Not Work: If We Are At Cyberwar! Financial Response President’s President Working Group Treasury on Financial Markets Principals Committee Policy Response Governors SECDEF, CJCS Deputies Committee FSSCC FBIIC Cyber Directorate ICI-IPC Cyber Response Group FEMA Bank A Regional UCG COCOM Bank B FS/ISAC Cyber DHS Exchange NCCIC Command Operational Response NTOC Director FBI Military Response Clearing House

  26. Why the Process Might Not Work: If We Get Stupid… Financial Response President’s President Working Group Treasury on Financial Markets Principals Committee Policy Response Governors SECDEF, CJCS Inside the Beltway, they Deputies Committee FSSCC FBIIC forget the real response, Cyber Directorate the real battle isn’t in DC ICI-IPC Cyber Response Group FEMA Bank A but at the banks under Regional UCG COCOM attack and in the private- Bank B FS/ISAC sector networks Cyber DHS Exchange NCCIC Command Operational Response NTOC Director FBI Military Response Clearing House

  27. QUESTIONS? Cyber Statecraft Initiative • International conflict, competition and cooperation in cyberspace • Publications (all at our website, acus.org) • Public and Private Events jhealey@acus.org Twitter: @Jason_Healey

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Congratulations October Buc of the Month Recipients! 12 th Grade 9 th Grade 10 th Grade 11 th

Congratulations October Buc of the Month Recipients! 12 th Grade 9 th Grade 10 th Grade 11 th

Congratulations October Buc of the Month Recipients! 12 th Grade 9 th Grade 10 th Grade 11 th Grade 7 th Grade 8 th Grade Alaina Holguin Simaranjeet Kaur Ashley Garcia Jael Jacobo Julina Rodriguez John Kinchen Yitzel Castellanos Sana

304 views • 3 slides
WELCOME TO 4 th GRADE JUST A LITTLE ABOUT 4 TH GRADE TRANSPORTATION ABOUT 4 TH GRADE OUR

WELCOME TO 4 th GRADE JUST A LITTLE ABOUT 4 TH GRADE TRANSPORTATION ABOUT 4 TH GRADE OUR

WELCOME TO 4 th GRADE JUST A LITTLE ABOUT 4 TH GRADE TRANSPORTATION ABOUT 4 TH GRADE OUR SCHEDULE CONTACT ME Important forms to fill out and Just a few things to get excited Please keep this slide handy for A look at our daily schedule and

366 views • 11 slides
8 TH GRADE COURSE SELECTION 8 TH GRADE! Its time to pick your classes for 8 th Grade! This

8 TH GRADE COURSE SELECTION 8 TH GRADE! Its time to pick your classes for 8 th Grade! This

8 TH GRADE COURSE SELECTION 8 TH GRADE! Its time to pick your classes for 8 th Grade! This presentation will walk you through your choices and give you information to bring home. Youll be ready to talk to your family and decide what

356 views • 12 slides
Whats my path? How do I get ready? 9 th Grade Mrs. Vomero 10 th Grade Ms.

Whats my path? How do I get ready? 9 th Grade Mrs. Vomero 10 th Grade Ms.

Whats my path? How do I get ready? 9 th Grade Mrs. Vomero 10 th Grade Ms. Gonzalez 11 th Grade Mrs. Beck 12 th Grade Mrs. Dickson Lead Counselor Mrs. Garza Score required to earn college credit AP Exam

323 views • 21 slides
7 TH GRADE COURSE SELECTION 7 TH GRADE! Its time to pick your classes for 7 th Grade! This

7 TH GRADE COURSE SELECTION 7 TH GRADE! Its time to pick your classes for 7 th Grade! This

7 TH GRADE COURSE SELECTION 7 TH GRADE! Its time to pick your classes for 7 th Grade! This presentation will walk you through your choices and give you information to bring home. Youll be ready to talk to your family and decide what

594 views • 13 slides
Grade 8's Going z z into Grade 9 z Course Selection All grade 9 students are required to

Grade 8's Going z z into Grade 9 z Course Selection All grade 9 students are required to

Grade 8's Going z z into Grade 9 z Course Selection All grade 9 students are required to take 8 courses. Only students with incomplete timetables or legitimate course errors will be allowed course corrections in September. z Course

313 views • 20 slides
Welcome to Grade 7 at CWAA Grade 7 Orientation Night Monday, May 15 Mrs. Brown Grade 7

Welcome to Grade 7 at CWAA Grade 7 Orientation Night Monday, May 15 Mrs. Brown Grade 7

Welcome to Grade 7 at CWAA Grade 7 Orientation Night Monday, May 15 Mrs. Brown Grade 7 Homeroom, Language Arts & Social Studies Teacher Mission: Engaging students to follow God completely, serve unselfishly, and achieve academic

397 views • 17 slides
Grade 5-8 Reconfiguration Committee 9 th grade moves to FHS in August 2015 8 th grade only

Grade 5-8 Reconfiguration Committee 9 th grade moves to FHS in August 2015 8 th grade only

Grade 5-8 Reconfiguration Committee 9 th grade moves to FHS in August 2015 8 th grade only at JR high campuses Elementary and Middle schools at capacity Overflow situations Realign the grades and distribute enrollments as evenly

407 views • 14 slides
9 TH GRADE COURSE SELECTION 9 TH GRADE! Its time to pick your classes for 9 th Grade! High

9 TH GRADE COURSE SELECTION 9 TH GRADE! Its time to pick your classes for 9 th Grade! High

9 TH GRADE COURSE SELECTION 9 TH GRADE! Its time to pick your classes for 9 th Grade! High School! This presentation will walk you through your choices and give you information to bring home. Youll be ready to talk to your family and

364 views • 19 slides
8th grade PRESENTATION Earl Warren Middle School REGISTRATION FOR 8th GRADE 1. 8th grade

8th grade PRESENTATION Earl Warren Middle School REGISTRATION FOR 8th GRADE 1. 8th grade

8th grade PRESENTATION Earl Warren Middle School REGISTRATION FOR 8th GRADE 1. 8th grade registration packets consist of the 8th grade course selection form 2. It must be completed and turned into your World History teacher by Wednesday

775 views • 23 slides
Student Achievement and Attainment Summary 3 rd 4 th Grade Grade 8 th Grade Algebra 1 SAT/ACT

Student Achievement and Attainment Summary 3 rd 4 th Grade Grade 8 th Grade Algebra 1 SAT/ACT

Student Achievement and Attainment Summary 3 rd 4 th Grade Grade 8 th Grade Algebra 1 SAT/ACT High School College No Remediation Postsecondary EOC Reading Math Science Passing Completion Enrollment Required Completion 2010 9 th Graders 2011 9

483 views • 4 slides
Sequence at a Glance 8 TH GRADE 9 TH GRADE 10 TH GRADE 11 TH GRADE 12 TH GRADE SUGGESTED PROGRAM

Sequence at a Glance 8 TH GRADE 9 TH GRADE 10 TH GRADE 11 TH GRADE 12 TH GRADE SUGGESTED PROGRAM

Sequence at a Glance 8 TH GRADE 9 TH GRADE 10 TH GRADE 11 TH GRADE 12 TH GRADE SUGGESTED PROGRAM (PREREQUISITE GRADE IN PREVIOUS COURSE) Algebra Honors Honors Honors Geometry Honors Pre-Calculus Calculus (85 or above) Algebra 2 (85 or

386 views • 7 slides
6 th Grade- Mrs. Kauffman 7 th Grade- Ms. Rogers 8 th Grade- Mrs. Scully 3 Language Arts 3

6 th Grade- Mrs. Kauffman 7 th Grade- Ms. Rogers 8 th Grade- Mrs. Scully 3 Language Arts 3

presented by HMS School Counselors 6 th Grade- Mrs. Kauffman 7 th Grade- Ms. Rogers 8 th Grade- Mrs. Scully 3 Language Arts 3 Math 3 Science 3 Social Studies (including Civics*) A student cannot go to high school until these courses

305 views • 19 slides
7th GRADE FORECASTING The process by which you choose your elective classes for 7th grade

7th GRADE FORECASTING The process by which you choose your elective classes for 7th grade

7th GRADE FORECASTING The process by which you choose your elective classes for 7th grade REQUIRED CLASSES FOR 7TH GRADE Core Classes: Math, Science, Language Arts and Social Studies 3 Trimesters of Wellness 7th grade students

228 views • 10 slides
8th GRADE FORECASTING The process by which you choose your elective classes for 8th grade

8th GRADE FORECASTING The process by which you choose your elective classes for 8th grade

8th GRADE FORECASTING The process by which you choose your elective classes for 8th grade REQUIRED CLASSES FOR 8TH GRADE Core Classes: Math, Science, Language Arts and Social Studies 3 Trimesters of Wellness 8th grade students

258 views • 10 slides
WELCOME TO 5th GRADE Meet the 5th grade teachers Meet the Teachers Welcome to 5th Grade! Glen

WELCOME TO 5th GRADE Meet the 5th grade teachers Meet the Teachers Welcome to 5th Grade! Glen

WELCOME TO 5th GRADE Meet the 5th grade teachers Meet the Teachers Welcome to 5th Grade! Glen Hills 5th Grade Teachers Mrs. Becker Ms. Merkel Ms. Mrs. Turnch Radcliffe Mrs. Mrs. Carrera Weisman Mrs. Becker I attended UW-LaCrosse and

802 views • 11 slides
The SJGAD Used Most in NSA Reporting --- Overview Derived From: NSAIC$SM IS2 Datoo : 20070103

The SJGAD Used Most in NSA Reporting --- Overview Derived From: NSAIC$SM IS2 Datoo : 20070103

~ c ~ Coogle pal tal kl/7. IOPSECRET/ISJII ORCON // NOJ -- ~ Hotma ll" You lim il liiiiil YAHoo' tl .... ' I 21' - PRISM/US-984XN Overview OR The SJGAD Used Most in NSA Reporting --- Overview Derived From: NSAIC$SM IS2 Datoo :

191 views • 4 slides
Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About

Standardization of post-quantum cryptography Tanja Lange 08 May 2016 A Workshop About Cryptographic Standards History of post-quantum cryptography 2003 Daniel J. Bernstein introduces term Post-quantum cryptography. PQCrypto 2006:

623 views • 23 slides
Secure Intersection with MapReduce R. Ciucanu 1 M. Giraud 2 P. Lafourcade 2 L. Ye 3 1 LIFO, INSA

Secure Intersection with MapReduce R. Ciucanu 1 M. Giraud 2 P. Lafourcade 2 L. Ye 3 1 LIFO, INSA

Secure Intersection with MapReduce R. Ciucanu 1 M. Giraud 2 P. Lafourcade 2 L. Ye 3 1 LIFO, INSA Centre Val de Loire Universit e dOrl eans 2 3 School of Computer Science and Technology Harbin Institute of Technology, China 26 July 2019

397 views • 29 slides
TIME IS POWER - QUANTUMINSERT 1 Learning Goals The Following Learning Goals are Covered in the

TIME IS POWER - QUANTUMINSERT 1 Learning Goals The Following Learning Goals are Covered in the

create your own exercise Mario Silaci, Lucas Wolf TIME IS POWER - QUANTUMINSERT 1 Learning Goals The Following Learning Goals are Covered in the Lecture PreLab Lab What are requirements to perform the QUANTUM X X X INSERT (QI)? How does

615 views • 34 slides
Tools of the NSA Playset Ruxcon 2014 Joe FitzPatrick Mike Ryan What is the NSA Playset? ()

Tools of the NSA Playset Ruxcon 2014 Joe FitzPatrick Mike Ryan What is the NSA Playset? ()

Tools of the NSA Playset Ruxcon 2014 Joe FitzPatrick Mike Ryan What is the NSA Playset? () nsaplayset.org 3D NSA Playset Price Sheet CONGAFLOCK - <$1 A Retroreflector, which is a passive device that reflects differently when a

786 views • 49 slides
Applications of algebraic geometry codes beyond classical coding Gretchen L. Matthews September

Applications of algebraic geometry codes beyond classical coding Gretchen L. Matthews September

Applications of algebraic geometry codes beyond classical coding Gretchen L. Matthews September 10, 2014 C L E M S O N M A T H E M A T I C A L S C I E N C E S Gretchen L. Matthews

1.03k views • 46 slides
Two-Part Webinar Part One: MRO Socialization of 2016-02 CIP SDT Draft Virtualization Changes

Two-Part Webinar Part One: MRO Socialization of 2016-02 CIP SDT Draft Virtualization Changes

Two-Part Webinar Part One: MRO Socialization of 2016-02 CIP SDT Draft Virtualization Changes Part Two: Risk Considerations for BCSI in the Cloud Brian Kinstad, Sr. Risk Assessment and Mitigation Engineer MRO Jay Cribb and Matthew Hyatt, Project

240 views • 22 slides
General Packet Radio Service (GPRS) Outline Introduction GPRS Architecture GPRS

General Packet Radio Service (GPRS) Outline Introduction GPRS Architecture GPRS

General Packet Radio Service (GPRS) Outline Introduction GPRS Architecture GPRS Interfaces GPRS Procedures Summary 2 Introduction (1/2) GPRS reuses the existing GSM infrastructure to provide end-to-end packet-switched

857 views • 83 slides

More recommend