“Chris Krebs, the director of the Cybersecurity and Infrastructure Security Agency at the Department of Homeland Security, admitted he had a lot of sleepless nights earlier this summer. He spent long hours worrying about how Baltimore City, five school districts in Louisiana and 22 jurisdictions in Texas would get out from under a ransomware attack.”
“During those long nights where DHS provided technical and operational support to those and other cities who fell under the scourge of the latest cyber assault, Krebs said it occurred to him that the government doesn’t have same doctrine for a large-scale cyber event like FEMA has for man-made and natural disasters.”
“’If you look at FEMA, they have operational plans, exercises and drills. They have an incredible wealth of doctrine, experience and understanding of who does what and when,’ Krebs said at the CISA cyber summit in August. ‘We have to develop that underneath the National Cyber Incident Response Plan (NCIRP).’”
“The NCIRP and Presidential Policy Directive (PPD)-41, which the Obama administration released July 2016, was supposed to serve as that detailed response plan. Experts say the goals of the NCIRP and PPD-41 never materialized, and, in fact, some say the government is in a more precarious position today than it was four or five years ago…” Read the full article here.
Source: What FEMA is to disaster response, CISA should be for cyber response – By Jason Miller, November 5, 2019. Federal News Network.