A fascinating article in the San Jose Mercury News discusses the recent expansion of public-private partnerships in the growing effort to combat cyber threats from foreign governments and criminals. These partnerships occur through formal agreements between major corporations and government-backed organizations, such as law enforcement, the military or research institutions. The agreements usually involve sharing of intelligence between the government and corporate representatives, as well as participation in threat reporting programs and security exercises. In some cases, the partnerships relate directly to research and development regarding ways to mitigate security threats.
This document is intended to provide private sector stakeholders with an overview of NLE 2012, to include a discussion of the exercise timeline, a snapshot of the exercise scenario, and a review of the various potential exercise participation opportunities.
An example of a weekly bulletin released by the Orange County Intelligence Assessment Center to local businesses through its “Private Sector Terrorism Response Group” (PSTRG) on January 6, 2012. The PSTRG was created in “December 2001 to create a private sector partnership [that can] effectively address private sector safety, incident management, employee education and public health consequences of potential attacks on the critical infrastructure within Orange County. Two large groups involved with PSTRG are the Orange County Business Council, of which 80% of the major businesses in Orange County are members, and Technet, a consortium of 28 high tech firms.” The bulletin includes excerpts of news articles related to terrorism, a list of upcoming events, including dirt bike events and rodeos, as well as a helpful list of upcoming television shows on the History Channel and other networks that relate in some manner to terrorism.
Global private security/police officer personnel levels from seventy leading countries including per capita figures from the 2011 Small Arms Survey.
Kentucky Emergency Management National Level Exercise 2011 “Building Private Sector Partnerships” Briefing from December 2010.
The United States relies on critical infrastructure and key resources (CIKR) for government operations and the health and safety of its economy and its citizens. The President issued National Security Presidential Directive 54 (NSPD-54)/Homeland Security Presidential Directive 23 (HSPD-23), which formalized the Comprehensive National Cybersecurity Initiative (CNCI). NSPD-54/HSPD-23 directs the Secretary of Homeland Security, in consultation with the heads of other Sector-Specific Agencies, to submit a report detailing the policy and resource requirements for improving the protection of privately owned U.S. critical infrastructure networks. The report is required to detail how the u.S. Government can partner with the private sector to leverage investment in intrusion protection capabilities and technology, increase awareness about the extent and severity of cyber threats facing critical infrastructure, enhance real-time cyber situational awareness, and encourage intrusion protection for critical information technology infrastructure.”
Confidential Cisco Law Enforcement IP Networks Presentation, December 3, 2007.
Confidential Verizon Wireless Leveraging Commercial Wireless Services for Law Enforcement Brief, May 14, 2008.
The law enforcement-private security (LE-PS) partnerships featured here were formed or expanded to address a range of critical needs: to avert or respond to a terrorist attack, support urban downtown revitalization, marshal resources to combat financial crimes, compensate for law enforcement budget cuts, improve safety at special events, improve security for the nation’s infrastructure, and bring community policing approaches and new resources to bear on crimes against residents and businesses. Many of the partnerships have been able to measure success not only by meetings and exchanges of information but also by crimes prevented and solved.
California Computer And Technology Crime High Tech Response Team (CATCH) Overview, December 2003.
California is home to many of the largest and most advanced technology companies in the world. We also have most of our citizens online in ever increasing amounts. In 2008, 75% of Californians reported that they use a computer at home, work, or school, and 70% use the Internet. Accompanying such an explosion in the telecommunication and Internet penetration has been a concomitant rise in technology crime. Our experience has taught us that technology and computers have given stalkers, pedophiles, destructive disgruntled employees, thieves, scam artists and those seeking infamy a new forum in which to ply their trade and cause misery.
Rapid Enforcement Allied Computer Team (REACT) Task Force Funding and Progress Report including personnel roster, January 2010.
The purpose of this regulation is to establish a procurement, evaluation, selection, negotiation and award process for PPPs that is consistent, transparent, and encourages and supports a climate of private sector innovation and investment in the Commonwealth. In order to carry out the purposes of the Act, this regulation provides guidelines and procedures for, among others: (i) identifying the Functions, Services or Facilities that qualify for establishment or development as PPPs; (ii) soliciting, obtaining and evaluating PPP proposals; (iii) selecting the entities or individuals that will enter into Partnership Contracts with a Partnering Government Entity; and (iv) negotiating and awarding Partnership Contracts.
Private-sector organizations participated in the Top Officials (TOPOFF) 3 (T3) exercise as partners with Federal, State, and local (FSL) government entities to test their combined ability to prepare for and respond to simulated biological and chemical terrorist attacks in Connecticut and New Jersey. The private sector’s participation in the exercise was extensive. Over 140 private sector organizations—representing critical infrastructure sectors, industry associations, public works, faith-based organizations, and multinational non-governmental organizations—played from 450 locations across the United States.
Memorandum of Understanding Between the Business Executives for National Security, Its Affiliated California Partnerships, and the Governor’s Office of Emergency Services
Private businesses play a significant role in protecting their employees and community during disasters. Businesses also play a vital role in working with government to facilitate and provide emergency response and recovery from all types of disasters. This memorandum of understanding (MOU) formalizes the relationship between the Business Executives for National Security (“BENS”) and the State of California’s Office of Emergency Services so that this association, including its affiliated California June 27 partnerships, can be fully integrated into the state’s Standardized Emergency Management system.
As Hurricane Katrina showed so dramatically, government alone cannot secure the nation or respond to major disasters. It needs the vast resources and expertise of the business community. Business needs government, too. Individual businesses do heroic things in times of crisis, but they know they could do much more working in concert with government.
The National Communications System is responsible for assuring key national security and emergency preparedness (NS/EP) decision-makers have the ability to communicate through the full spectrum of crises. With the vast majority of the communications infrastructure owned by corporations, any successful strategy requires regular and meaningful interaction with industry.