Critical infrastructure protection: sector-specific plans' coverage of key cyber security elements varies: report to Congressional requesters

Original publisher: [Washington, D.C.] : U.S. Govt. Accountability Office, [2007] OCLC Number: (OCoLC)180187853 Subject: Emergency management -- United States. Excerpt: ... Appendix I: Briefing for Congressional Staff Objectives, Scope, and Methodology Table 1: Cyber-Related Sections Section 1: Sector Profile and Goals Section 6: Measure Progress " Characterizes cyber aspects " Ensures that integration of cyber metrics is part of measurement process " Identifies stakeholder relationships for securing cyber assets " Describes how cyber metrics will be reported to DHS " Includes developing and using cyber metrics to measure progress Section 2: Identify Assets, Systems, Networks, and Functions " Describes process to identify cyber assets, functions, or elements " Describes how to use metrics to guide future cyber projects " Describes process to identify cyber dependencies / independences Section 7: Critical Infrastructure Protection Research and Development ( R & D ) " Describes how technology developments are related to the sector's cyber goals Section 3: Assess Risks " Describes how the risk assessment process addresses cyber elements " Describes process to identify cyber security technology requirements " Describes a screening process for cyber aspects " Describes process to solicit information on ongoing cyber R & D initiatives " Describes methodology to identify potential consequences of cyber attacks " Identifies existing cyber-related projects that support goals and identifies gaps " Describes methodology for vulnerability assessments of cyber aspects " Identifies R & D governance structure " Describes methodology for threat analyses of cyber aspects Section 8: Managing Sector-Specific Agency Responsibilities " Describes incentives to encourage voluntary vulnerability assessments " Describes sector-specific agency's management of NIPP responsibilities " Describes process for updating, reporting, budgeting, and training Section 4: Prioritizing I...