- Critical infrastructure and cybersecurity policies
- Improvements
- Information sharing
- Improved critical infrastructure
- Comprehensive risk assessment
- Workforce development on cybersecurity
{"grid":3}
{"dots":"true","arrows":"false","effect":"slide"}
Critical infrastructure and cybersecurity policies
Critical infrastructure and cybersecurity policies, frameworks, coordination bodies developed and/or improved within and among critical infrastructure entities.Critical infrastructure protection policies, standards, and/or security controls and plans adopted and implemented among critical infrastructure entities.
{"dots":"true","arrows":"false","effect":"slide"}
Improvements
Improved critical infrastructure operator capability to disseminate information on system risks and threats in a timely manner.
{"dots":"true","arrows":"false","effect":"slide"}
Information sharing
Formal and informal entity-level information sharing agreements and exchange of threat/vulnerabilities established. Employees trained in cybersecurity best practices.
{"dots":"true","arrows":"false","effect":"slide"}
Improved critical infrastructure
Improved critical infrastructure entities’ capabilities and maturity to identify, mitigate, and respond to cybersecurity threats. Methodologies for criteria-based critical infrastructure key resources determination established and implemented.
{"dots":"true","arrows":"false","effect":"slide"}
Comprehensive risk assessment
Comprehensive risk assessment and/or mitigation programs developed and/or improved. Cybersecurity best practices identified and adopted by hogh-level entities. Critical infrastructure and cybersecurity investments leveraged.
{"dots":"true","arrows":"false","effect":"slide"}
Workforce development on cybersecurity
Workforce development on cybersecurity established and improved. Number of capable staff to audit/certify compliance to international critical infrastructure protection standards increased. U.S. security among critical infrastructure entities improved through application of lessons learned that are directly attributable to the activity. Increased U.S. critical infrastructure entities implementing best practices derived through regional working groups.