Professional Documents
Culture Documents
January 5, 2016
Speaker Introduction
Faye Francy, Executive Director A-ISAC
Aviation Information Sharing and Analysis Center (A-ISAC)
Executive Director - establish a robust global A-ISAC, a non-profit organization
Implementing a framework for analyzing and sharing information security
threats across the global community
Responsible for establishing, implementing and overseeing the organizations
mission, goals, policies and core guiding principles
The Boeing Company (2001-current)
Boeing Commercial Airplane Cyber ONE Community of Excellence Leader
Director, Networked Systems Domain for CTO 2008-11
Director, Networked Centric Operations, PW 2005-08
Director, Engineering and Programs Air Traffic Management (ATM) 2001-05
Director, FAA Programs at ARINC Incorporated 1998-01
Intersec and AvSec Companies, Owner / President 1989-98
Palm Beach County Sherriff's Department / Maryland State Police
Education
Bachelors Degree in Chemistry and Mathematics from Towson State University
Master Degree in Forensic Chemistry from University of Pittsburgh.
The Threat
A National Security Issue
Mission
Advocate for a security system that ensures
aviation growth and peoples freedom to fly
Goal
Public and Private Sector working together to
enhance a resilient global commercial aviation
system
Situation Analysis
Threat Outlook
The aviation sector is vast and complex; protecting this system of systems will require
significant collaboration from the government, and sector partners across the globe
Complex
Standardized
Documented
Connected
Open
Maintenance
Maintenance Tools
Performance Analysis
Monitoring
Troubleshooting
Maintenance Manuals
Technical Logbook
Cabin Crew
Cabin Logbook
Cabin Management
Cabin Systems Control
Passenger Lists
Electronic Manuals
Passengers
IFE Systems
Internet Connectivity
Phone Services
OnBoard Intranet Service
Purpose
Requirements
1/4/2016
Satellite Communications
(SATCOM)
Air/Ground
Links
Portable
EFBs
ACARS
Gate
GateLink
(Wireless)
Outstation
Operations & Dispatch
centre
Airline
Attacks
Supply chain
Aircraft data & parts
suppliers
12
Factory
S/W
Loads
Airport
Attacks
GPS
Jamming
Hangar
Factory
S/W
Loads
Warehouse
12
13
Culture of Security
Embedded Network Security Requirements
Training/Education
Shift from safety to safety, security and resiliency
Physical
Cyber
Human
Set Goals
And
Objectives
Identify
Assets,
Systems,
And
Networks
Assess
Risks
(Consequences,
Prioritize
Implement
programs
Measure
Effectiveness
Vulnerabilities,
And Threats)
Feedback
Loop
What is an ISAC?
Critical Infrastructure Protection
Information Sharing & Analysis Centers (ISACs)
Operational concept for sharing information within private sector
Established by PPD-63 (1998), HSPD-7 (2003), PPD-21 (2013)
DHS National Infrastructure Protection Plan (NIPP)
Member-to-member sharing
Company proprietary / PII / SSI
Global multi-national companies / foreign OEMs
USG classified / LE / Foreign Gov
17
18
A-ISAC: Overview
Overview & Value Proposition
Offering
What
we
dont do
Benefits
A-ISAC: Overview
Collaboration Framework: Working together across private and public sectors
Airlines
Aircraft Manufacturers
Air Cargo
Airports
Aviation Suppliers
Service Providers
General Aviation
MROs FBOs
Industry Associations
Government Partners
Department of Homeland Security
Transportation Security
Administration
Dept of Transportation/Federal
Aviation Administration
Federal Bureau of Investigation
Office of Director of National
Intelligence
Intelligence Community
Department of Defense
20
21
A-ISAC: Overview
Operational Model: Shared Situational Analysis
A-ISAC information sharing relationships provide voluntarily
timely, anonymized, and actionable intelligence
Government
& Partner
Industry
Analysis
A-ISAC
Aviation
Industry
Analysis
Information
Dissemination
A-ISAC Members
24
Open Source
Analysis
A-ISAC Snapshot
Progress To-date
Treasurer
Candice Burke
Executive Director
Faye Francy
Operations Manager
Terrance Kirk
Business Operations
Nick Smith-Simmons
Paul Hart
Membership &
Communications
Bookkeeping / Admin
Lori Pierelli
Julie Kirk
Approved 12/15/15
Biz Plan
100%
Marketing
Legal
Operations
Finance
Marketing
Plan
75%
Certificate of
Incorporation
100%
CONOPS
100%
Financial
Plan
75%
Tri-Fold &
Slicker
100%
By-Laws
100%
Op. Rules
100%
Budget
95%
Subscriber
Agreement
100%
Op. Rhythm
100%
FAQ
100%
Exec Deck
100%
MS-ISAC
Agreement
100%
IRP
80%
A-ISAC Article
100%
ADIAC MOU
25% On HOLD
I-SOP
50%
DHS CRADA
100%
Training
Package 80%
Audit Plan
50%
Human
Resources
Admin
HR Plan
75%
Welcome
Package
90%
Insurance
100%
Member
Guidelines
90%
Policies
90%
Committee
Charters
100%
Anti-Trust
Business Courtesies
COI
COC
Credit Card
Financial
Laptop
Overtime
Record Retention
Travel
Whistleblower
A-ISAC: Membership
Program Benefits
Program / Benefit
Description
Alerting / Crisis
Notifications
Urgent notifications of impending threats to aviation or indications of emerging crises via voice,
SMS text, twitter, e-mail, and across information sharing platform.
Real-time Sharing of
Aviation Intelligence
& Threat Data
Real-time posting of relevant open source reporting, incoming threat data, and Indication &
Warning (I&W) derived from member submissions and Government reporting.
Weekly Intelligence
Summaries (INTSUM)
A weekly intelligence report which consolidates current threat intelligence, indicators, and analytic
reports from various intelligence organizations.
Special Intelligence
Reports
Finished intelligence reports on topics of interest to A-ISAC Membership and Aviation Sector.
Analytic Exchanges /
Liaisons
Analyst exchanges with other ISACs, private sector, vendors and government.
Threat Conference
Calls
Telephonic analyst exchanges featuring voluntary, contributory content and analysis from member
firms as well as special presentations from outside experts.
During or subsequent to incident or event, A-ISAC will coordinate development and dissemination
of actionable mitigation measures.
29
A-ISAC: Membership
Program Benefits 2
Program / Benefit
Description
Regional Workshops
Establish a series of regional information sharing workshops providing the opportunity to present
and interact in a smaller more focused, regional setting.
Member Contact
Directory
Contact information for A-ISAC member institutions will be shared with members of A-ISAC
providing approval by member is given before dissemination of information.
Regular Roundtable dialog on specific security topics related to aviation, to include trending,
Roundtables / Table Top
mitigation techniques, and best practices. Table Top Exercises will be conducted to evaluate the
Exercises
capability and maturity of the A-ISAC and its membership.
A-ISAC Special
Committees
A-ISAC will convene specialty committees that support the maturation of our program and benefits.
Committees include: Marketing, Membership and Communication; Portal; Legal / Policy; Education;
Best Practices; & Global Engagement.
Member Surveys
A-ISAC will use member surveys to ensure our program and benefits are meeting the needs of the
aviation community.
Forum for A-ISAC members to share and collaborate on critical aviation specific security threats,
industry best practices, and access to top information security executives and vendors in the
aviation sector.
Security Awareness
Training
Tailored to meet our member needs by enhancing the ability of the aviation security sector to
prepare for and response to threats
30
A-ISAC: Products
Example Products
Committee Information
The Trajectory Safe, Secure, Efficient and Resilient
Global Air Transportation System
1.
2.
3.
Legal Committee
4.
5.
6.
IT & Technology
7.
Structure
www.nationalcouncilofisacs.org
Aviations Trajectory
The Path Forward
Dont be in denial
Dont underestimate the problem
Dont be hostile to the government
Dont make it an issue buried in the
bureaucracy, not just a CIO issue
5. Organize, ISACs, sponsor R&D work
6. Think holistically
7. Dont attempt to defend the entire
network
8. Identify the crown jewels
9. Look at worse case scenarios
10. Have an industry strategy
*Richard A. Clarke TOP 10 LIST
Chairman and CEO, Good Harbor Risk Management, LLC, AIAA Conference, Aug
2013
Thank you!
36
Key Contacts
John Craig, Chairman
john.craig@boeing.com
425-266-6486
Candice Burke, Secretary-Treasurer
cburke@a-isac.com
425-238-1164
Faye Francy, Executive Director
ffrancy@a-isac.com
703-861-5417
Terrance Kirk, Operations Manager
tkirk@a-isac.com
301-346-0715
Lori Pierelli, Membership and Communications Manager
lpierelli@a-isac.com
(443) 226-8093
Douglas Blough, Senior Analyst
dblough@a-isac.com
609-775-8355
Govt&&All
All Other
Gov
Other
17 Members
General Airlines
Incident reporting
Aviation
Air Cargo
Tips / field reports
Service
Airports
Providers
Suppliers
Manufacturers
MROs- FBOs Industry
Associations
Urgent
TLP
Other
Industries
& Sectors
Other Info
Sharing
Orgs - NCI
NCCIC
ADIAC
Other Govt
A-ISAC
Anonymized
Open
Sources
Intelligence
Incident reporting
Trends & analysis
VOLUNTARY
TLP
Anonymized
Aviation
expertise
Indicators
Analyzes, aggregates, fuses information Incident reports
Mitigation actions
Filters & selects for Aviation relevance
Protects member info & attribution (TLP)
Creates alerts & analysis for members
38
Coordinates response & recovery
January 2015
Interfaces with Gov / other sectors
TLP Color
RED
disclosed.
AMBER
involved.
Sources may use TLP: GREEN when
information is useful for the awareness
of all participating organizations as well
as with peers within the broader
GREEN
community or sector.
channels.
WHITE
copyright controls