Analyze risks affecting the 16 critical infrastructure sectors.
Analysis should include
- defining critical infrastructure sectors as including assets critical to the functioning of a society and economy
- identifying possible vs. probable loss within the critical infrastructure sectors to help assess financial impact within the infrastructure
- evolving threats, including, but not limited to
- cyber threats
- acts of terrorism
- pandemics
- extreme weather
- accidents or technical failures
- societal unrest
- relating evolving threats to manufacturing as one of the identified 16 critical infrastructure sectors, such as
- loss of intellectual property
- machine-to-machine communication disruption
- disruption to production processes
- disruption of Industrial Internet of Things (IIoT)
- disruption resulting in threats to human health and safety.
For further information see Presidential Policy Directive (PPD)-21 Critical Infrastructure Security and Resilience (2013) Links to an external site. and Executive Order (EO) 13636 Improving Critical Infrastructure Cybersecurity (Issued Dec 2016). Links to an external site.
Process/Skill Questions:
- How can one develop a threat protection guide? How can one visualize the type of threats, and prioritize those threats, within the guide?
- What are some proactive prevention measures to defend against evolving threats?