incidents

Cybersecurity Officials from U.S., U.K., Australia, Canada and New Zealand Release Best Practices for Incident Response

Today, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), Australian Cyber Security Centre (ACSC), New Zealand’s National Cyber Security Centre (NCSC NZ) and Computer Emergency Response Team NZ (CERT NZ), Canada’s Communications Security Establishment, and the United Kingdom’s National Cyber Security Centre (NCSC UK), are releasing a Joint Cybersecurity Advisory: Technical Approaches to Uncovering and Remediating Malicious Activity.
Last Published Date: February 5, 2021

RBPS 15-16 – Security Incidents

RBPS 15 - Reporting of Significant Security Incidents and RBPS 16 - Significant Security Incidents and Suspicious Activities complement each other and address the importance of developing protocols and procedures to identify, investigate, and report all significant security incidents and suspicious activities in or near the facility site.

RBPS 15-16 Incidents

Risk-Based Performance Standard (RBPS) 15 – Reporting of Significant Security Incidents and RBPS 16 – Significant Security Incidents and Suspicious Activities complement each other and address the need for high-risk chemical facilities to promptly and adequately identify, investigate, and report all significant security incidents and suspicious activities in or near the facility to appropriate entities.

CSAT SSP Submission Tips

The Cybersecurity and Infrastructure Security Agency (CISA) has reviewed thousands of Site Security Plans (SSPs) and Alternative Security Programs (ASPs) submitted by high-risk chemical facilities under the Chemical Facility Anti-Terrorism Standards (CFATS) regulation. Based on these reviews, CISA has identified helpful hints to assist with completing your SSP as part of the authorization and approval process.