sign in sign up
<<
Home , Region

NY

CYBER+INFRASTRUCTURE NJ PR U.S. CYBERSECURITY + INFRASTRUCTURE SECURITY AGENCY REGION II

REGIONAL LOCATION: SIZE: ESTIMATED KEY FACTS: OFFICE: 2 58,836 POPULATION: • Home to the nation’s financial capital (New York NEW YORK, STATES SQUARE 32,396,500 metropolitan area) NY 2 MILES • Contains the highest population density among U.S. states • Puerto Rico produces 16 of 8 the top-20 selling drugs in

REGION II TRIBAL the U.S. with pharmaceutical manufacturing representing NATIONS 72 percent of island exports in 2016

The Cybersecurity and Infrastructure Security Agency (CISA) delivers services to support the security and resilience of critical infrastructure owners and operators and state, local, tribal, and territorial partners through 10 regions, inclusive of all states and territories.

ISA regions lead and support public and sector Enhance election infrastructure security and partners in developing and maintaining secure and other critical infrastructure cyber systems Cresilient infrastructure. Regional personnel work with critical infrastructure partners and communities at the regional, state, , tribal, and local levels to: Improve situational awareness of cybersecurity risks and incidents

Support preparation, response, and recovery A Regional Director leads a cadre of security professionals efforts for hazards impacting critical infrastructure located throughout the region. Through a regional office strategically located in New York, NY, regional personnel Safeguard soft targets and crowded places manage mission execution through steady state and incident operations, critical infrastructure analysis, and strategic outreach to critical infrastructure partners. Protective Security Conduct and integrate infrastructure assessments Advisors (PSAs), Chemical Security Inspectors (CSIs), Cyber and analysis, including dependencies and cascad- Security Advisors (CSAs), Emergency Communications ing effects, on critical infrastructure to influence Coordinators, and visiting CISA staff all coordinate their critical decision-making at all phases of emergency infrastructure protection missions through the regional offices, management and collaborate on regional critical infrastructure efforts, as needed. Regional personnel coordinate training events and exercises for stakeholders; participate in external planning with Facilitate information sharing between public state, local, tribal, territorial, and private sector partners; and and private sector critical infrastructure partners provide advice and expertise to stakeholders on infrastructure protection, data tools and information sharing platforms, critical infrastructure sector specialties, and resilience and recovery.

REPORT SUSPICIOUS ACTIVITY BY DIALING 911 OR YOUR LOCAL POLICE DEPARTMENT CYBERSECURITY & INFRASTRUCTURE SECURITY AGENCY

CYBER+INFRASTRUCTURE REGION II

EVENT SUPPORT • Regional personnel organize physical assessment of an organization’s cyber and cyber security exercises (ranging posture. • Regional personnel provide risk from seminars, workshops, tabletops assessments, security-focused to full-scale exercises) that test facility INCIDENT SUPPORT strategic planning expertise, threat plans and procedures, identify gaps, AND ANALYSIS and hazard information, and on-site and recognize lessons learned and support for National Special Security • Regional personnel provide pre- and best practices. Regional personnel also Events (NSSEs) and Special Event post-incident analysis, assessment, provide support to federal, state, local, Activity Rating (SEAR) events occurring and stakeholder communication to and regional exercises organized by in the region, as well as other support strong decision-making and other organizations. events, as requested by state and local improved resilience. partners. • CSAs conduct cyber workshops, • Regional personnel provide critical in- joining stakeholders across existing frastructure prioritization information, CHEMICAL SECURITY cybersecurity initiatives and groups geospatial analysis, and information • CSIs perform regulatory activities for to enhance information sharing. CSAs sharing to DHS HQ and other federal high-risk chemical facilities under can also connect critical infrastructure agencies during special events and in the Chemical Facility Anti-Terrorism partners to a variety of cyber risk response to threats and incidents. Standards (CFATS) program. These management capabilities through the • Regional personnel collaborate to facilities must meet and maintain risk- Critical Infrastructure Cyber Community determine impacts to regionally- based performance security standards (C3) Voluntary Program. significant critical infrastructure appropriate to the facilities and the and cross-sector impacts within risks they pose. ASSESSMENTS an incident area. • PSAs conduct Assist Visits to provide • CSIs conduct regulatory inspections, critical infrastructure facilities with an • Regional personnel determine respond to facilities’ compliance overview of available DHS services dependencies and cascading effects assistance requests, and support and/or provide a “facility walk- on critical infrastructure beyond the facility security plan development. through.” PSAs may conduct more immediate incident area and directly CSIs also engage in program outreach detailed security assessments, upon affected critical infrastructure sectors. with stakeholders; private industry; request. and Federal, State, and local partners • Regions may deploy Infrastructure to coordinate the protection of covered • PSAs conduct assessments using the Specialists to Joint Field Offices, facilities with local first responders, Infrastructure Survey Tool (IST) or Emergency Operations Centers, and identify potential chemicals of interest, Rapid Survey Tool (RST). Both tools other command centers during a and share information. help PSAs examine the most critical special event or incident, as necessary. aspects of a facility’s security and TRAINING AND EXERCISES resilience posture, and an IST will FEDERAL FACILITY SECURITY • Regional personnel facilitate or compare a facility against the national • Regional personnel work closely with deliver DHS Active Shooter Training/ average for similar facilities. Federal partners in the region to Workshops, Supply Chain Workshops, • PSAs administer the Regional implement the Interagency Security Dams Security Workshops, and others. Resiliency Assessment Program Committee security standards and best practices for nonmilitary federal • Regional personnel facilitate (RRAP), a voluntary cooperative facilities. delivery of DHS Office for Bombing assessment of specific critical infra- Prevention training courses to prevent, structure within a designated geo- protect against, respond to, and graphic area and a regional analysis of mitigate bombing incidents, including the surrounding infrastructure. RRAPs For more information Improvised Explosive Device (IED) address a range of infrastructure on Region II: Awareness and Safety Procedures, resilience issues that could have regionally- and nationally- significant Bomb Threat Management Planning, • Visit the Regional Offices consequences. Active Threat Awareness, IED and website: https://www.dhs.gov/ Vehicle-Borne Threat Detection, Sports • CSAs offer three types of assessments: cisa/cisa-regional-offices and Entertainment Venues Bombing Cyber Infrastructure Survey, Cyber Prevention Solutions Portfolio, and Resilience Review, and External • Contact regional staff at more. Courses are provided in-person Dependency Management, to [email protected] and virtually. provide a strategic, all-encompassing

REPORT SUSPICIOUS ACTIVITY BY DIALING 911 OR YOUR LOCAL POLICE DEPARTMENT 20190425