Information Sharing and Analysis Center

Information Sharing and Analysis Center
AbbreviationISAC

An Information Sharing and Analysis Center (ISAC) is an organization that provides a central resource for gathering information on cyber and related threats to critical infrastructure and providing two-way sharing of information between the private and public sectors.[1][2]

Sector ISACs began forming in 1999, subsequent to the May 22, 1998 signing of U.S. Presidential Decision Directive-63 (PDD-63), when "the federal government asked each critical infrastructure sector to establish sector-specific organizations to share information about threats and vulnerabilities."[3] Decision Directive-63 (PDD-63) was replaced by Homeland Security Presidential Directive 21 in 2013.

Australia

  • Critical Infrastructure Information Sharing & Analysis Centre (CI-ISAC)[4]

Canada

  • Global Mining and Metals Information Sharing & Analysis Centre (MM-ISAC)[5]

Europe

European Energy - Information Sharing & Analysis Centre (EE-ISAC)[6] is a network of private utilities, solution providers and (semi) public institutions such as academia, governmental and non-profit organizations which share valuable information on cyber resilience to strengthen the cyber security of the European Power Grid.

India

In India, the Information Sharing and Analysis Center (ISAC) operates as an independent non-profit organization that works closely as Public-Private-Partner (PPP) with the apex nodal agency for cyber security, National Critical Information Infrastructure Protection Center (NCIIPC), designated under the IT Act Law 2000.

Japan

  • Financials ISAC Japan[7]
  • ICT Information Sharing And Analysis Center Japan[8]
  • Japan Electricity Information Sharing and Analysis Center[9]
  • Japan Foreign Trade Council ISAC[10]
  • Medical ISAC Japan Cyber Security Service (MICSS)[11]
  • Transportation ISAC JAPAN[12]

Singapore

  • Operational Technology (OT-ISAC) [13]

United States

The National Council of ISACs (NCI Directorate) members include:

  • Automotive (Auto-ISAC) [14]
  • Aviation (A-ISAC) [15]
  • Communications ISAC (NCC)
  • Defense Industrial Base (National Defense ISAC (ND-ISAC)
  • Emergency Services (EMR-ISAC)
  • Electricity (E-ISAC)
  • Energy Analytic Security Exchange (EASE)
  • Elections Infrastructure (EI-ISAC)[16]
  • Financial Services (FS-ISAC)
  • Healthcare Ready
  • Health (Health-ISAC) [17]
  • Information Technology (IT-ISAC)
  • Maritime Security (MTS-ISAC)
  • Media and Entertainment (ME-ISAC)
  • Multi-State [State, Local, Tribal and Territorial (SLTT) Governments] (MS-ISAC)[18]
  • NGO (NGO-ISAC) [19]
  • Nuclear (NEI)
  • Oil and Gas (ONG-ISAC)
  • Public Transit (PT-ISAC)
  • Real Estate (RE-ISAC)
  • Research & Education Network (REN-ISAC) [20]
  • Retail & Hospitality (RH-ISAC) Formerly R-CISC [21]
  • Space (S-ISAC) [22]
  • Still Talking (ST-ISAC)
  • Supply Chain (SC-ISAC)
  • Surface Transportation (ST-ISAC)
  • Water (Water-ISAC)

Many other ISACs exist beyond the National Council of ISACS, which caters only to sectors the US government has declared Critical Infrastructure sectors, such as MFG-ISAC, LS-ISAC and SEAL-ISAC. [23]


References

  1. ^ (au), David A. Powner (15 May 2017). Critical Infrastructure Protection: Department of Homeland Security Faces Challenges in Fulfilling Cybersecurity Responsibilities. DIANE Publishing. p. 51. ISBN 9781422301012.
  2. ^ "FACT SHEET: Executive Order Promoting Private Sector Cybersecurity Information Sharing". whitehouse.gov. 12 February 2015 – via National Archives.
  3. ^ "ABOUT ISACs" National Council of ISACs, 2022. Accessed February 25, 2023.
  4. ^ "Critical Infrastructure ISAC". www.ci-isac.org.au. Retrieved 2023-02-06.
  5. ^ "Mining and Metals ISAC". www.mmisac.org. Retrieved 2018-03-21.
  6. ^ "Home". EE-ISAC - European Energy - Information Sharing & Analysis Centre.
  7. ^ "一般社団法人 金融ISAC". f-isac.jp. Retrieved 2023-02-20.
  8. ^ "一般社団法人ICT-ISAC / ICT-ISAC JAPAN". ict-isac.jp. Retrieved 2023-02-20.
  9. ^ "日本貿易会ISAC | 商社が分かる | JFTC - 一般社団法人日本貿易会". www.jftc.or.jp/shosha/isac/. Retrieved 2023-02-20.
  10. ^ "電力ISAC". je-isac.jp. Archived from the original on 2023-04-06. Retrieved 2023-02-20.
  11. ^ "医療ISAC - Medical ISAC Japan". m-isac.jp. Retrieved 2023-02-20.
  12. ^ "一般社団法人交通ISAC". t-isac.jp. Retrieved 2023-02-20.
  13. ^ OT-ISAC
  14. ^ Auto-ISAC
  15. ^ Aviation ISAC
  16. ^ "Elections Infrastructure ISAC is now a member of the National Council of ISACs". CIS.
  17. ^ Health-ISAC|H-ISAC.org
  18. ^ "MEMBER ISACS - National ISACs". National ISACs. Retrieved 2024-04-04.
  19. ^ "NGO-ISAC". NGO-ISAC. Retrieved 2024-10-24.
  20. ^ "REN-ISAC". REN-ISAC. Retrieved 2023-12-11.
  21. ^ "RH-ISAC | A retail and hospitality focused cyber intelligence community". rhisac.org. Retrieved 2024-07-02.
  22. ^ S-ISAC.org
  23. ^ "REN-ISAC". REN-ISAC. Retrieved 2023-12-11.