About the MS-ISAC

Mission

The mission of the MS-ISAC, consistent with the objectives of the National Strategy to Secure Cyberspace, is to provide a common mechanism for raising the level of cyber security readiness and response in each state and with local governments. The MS-ISAC provides a central resource for gathering information on cyber threats to critical infrastructure from the states and providing two-way sharing of information between and among the states and with local government.

 

Major Objectives of the MS-ISAC

  • disseminate early warnings of cyber system threats
  • share security incident information
  • provide trending and other analysis for security planning
  • distribute current proven security practices and suggestions
  • promote awareness of the interdependencies between cyber and physical critical infrastructure, as well as between and among the different sectors

MS-ISAC Executive Committee

The MS-ISAC Executive Committee comprises nine (9) Members, one of which is the Chair of the MS-ISAC, and the remaining members are from different Member entities.

  1. The terms of Executive Committee members are three (3) years.
  2. Executive Committee members will be appointed by the Chair upon recommendation by the Nominating Committee.
  3. The Executive Committee will vote on matters brought to its attention coming from task forces or the members at large. Each Committee member will have one vote on matters presented by the Chair for vote by the Executive Committee, with a tie vote being broken by the Chair. A simple majority will be sufficient to carry the vote.
  4. The Executive Committee will meet at least quarterly or as designated by the Chair.

Highlights of MS-ISAC Services

  • distribution of cyber security advisories and bulletins
  • cyber incident response assistance to MS-ISAC Members
  • monthly Member conference calls
  • annual meetings of the Members
  • two MS-ISAC websites - a public and a secure website
  • participation in cyber exercises, including the national Live Wire and Cyber Storm exercises
  • development and adoption of common cyber alert level protocols
  • development of draft cyber incident reporting protocols
  • support and promotion of National Cyber Security Awareness Month
    MS-ISAC Deliverables for 2005 National Cyber Awareness Month:
    • 36 MS-ISAC Members (35 States and the District of Columbia) signed proclamations recognizing Awareness Month;
    • Cyber Security Toolkits were developed and distributed to all 50 States and the District of Columbia;
    • PSAs for Governors were distributed;
    • National Webcast was conducted with more than 5,000 registrants from across the country.
    • Awareness Month materials are available online .
  • development and execution of legal NDA for the Members to sign
  • development and adoption of the MS-ISAC Business Plan
  • development and adoption of the MS-ISAC Charter
  • development and adoption of MS-ISAC Member Representative Guidelines
  • development and adoption of ISAC Council Representation Guidelines
  • development and adoption of MS-ISAC Contact Administration Guidelines
  • establishment of the MS-ISAC Nominating Committee
  • issuance of white papers
  • served as chair for the state and local section of the “Awareness and Outreach” Task Force of the NCSP- the Task Force issued a report detailing specific action items to be taken to increase end user cyber security awareness
  • collaboration with all necessary parties

MS-ISAC Cyber and Spatial Analysis Center (CSAC)

The MS-ISAC Cyber and Spatial Analysis Center (CSAC) is a 24X7 operational center for the Members. Vulnerabilities, threats and other significant cyber-related events are reported to and correlated by the CSAC staff. Information is vetted and relevant, and significant information is redistributed to the entire membership. Before redistribution, information is analyzed to incorporate a “value add” – in other words incorporation of additional information regarding mitigation strategies or interim steps that can be taken to protect the infrastructure. These advisories are then distributed to the Members.

MS-ISAC Common Cyber Alert Level Procedures

  • The MS-ISAC Members have adopted a common Cyber Alert Indicator Protocol process. Thus, when any MS-ISAC member entity is at a “Guarded” level for cyber, for example, all of the other MS-ISAC Members will know the specific criteria used to arrive at that level.
  • An interactive mapping application is located on the secure MS-ISAC portal so that Members may identify their current cyber alert level and the reason for that level. This information is updated by the Members minimally on a weekly basis.
  • Additionally, the MS-ISAC Members have a common Incident Reporting process, whereby Members can call into a 24 x 7 toll-free number to report cyber incidents to the MS-ISAC Cyber and Spatial Analysis Center .
  • The MS-ISAC serves as the liaison between the states and U.S. Department of Homeland Security’s US-CERT for cyber incident reporting.

National Webcast Initiative

The Multi-State Information Sharing and Analysis Center (MS-ISAC) in cooperation with the Department of Homeland Security, through its National Cyber Security Division, partnered to deliver a series of national webcasts which examine critical and timely cyber security issues.

Embracing the concept that security is everyone’s responsibility, these webcasts are available to a broad audience to help raise awareness and knowledge levels. Thousands of individuals from across the country and around the world participate in the webcasts.

The webcasts provide practical information and advice that users can apply immediately. All sessions are recorded and archived for viewing via the MS-ISAC public website .

Coordination with the National Private ISACs

The MS-ISAC works collaboratively with a number of organizations in achieving its goals. Because a majority of critical infrastructure is either owned or controlled by the private sector, a strong relationship with the private sector is vital. To that end, the MS-ISAC works closely with the National ISAC Council, which comprises representatives from critical industry sectors. The MS-ISAC was the first government entity to become a member of the ISAC Council.