Listing 1 - 7 of 7 |
Sort by
|
Choose an application
Cyber incident response has evolved based on systems and processes developed for other types of incident response, such as response to natural hazards. Large-scale cyber incidents that would have an impact on the United States' national and homeland security, economic security, and public safety and welfare to date are rare. However, they may have additional complications that make them more complex to plan for, including challenges in distinguishing the early stages of a significant cyber incident from a more quotidian incident, and the diversity of stakeholders involved. In this report, RAND researchers compare and contrast incident response for cyber and other types of hazards, both human-caused and natural, to derive initial insights into their similarities and distinctions. The report suggests some ways to improve preparedness for cyber incident response and propose additional areas requiring further research. Recommendations include developing more rigorous and dynamic joint public-private exercises, conducting further analysis to identify how systems could fail through a cyber attack to inform early warning efforts, and developing decision mechanisms and shared understandings that will facilitate coordinated activation and execution of incident response plans.
Cyberinfrastructure --- Computer networks --- Security measures --- Evaluation.
Choose an application
Increased reliance on intelligence processing, exploitation, and dissemination; networked real-time communications for command and control; and a proliferation of electronic controls and sensors in military vehicles (such as remotely piloted aircraft), equipment, and facilities have greatly increased the U.S. Department of Defense (DoD)'s dependence on energy, particularly electric power, at installations. Thus, ensuring that forces and facilities have access to a reliable supply of electricity is critical for mission assurance. However, most of the electricity consumed by military installations in the continental United States comes from the commercial grid—a system that is largely outside of DoD control and increasingly vulnerable to both natural hazards and deliberate attacks, including cyberattacks. In this report, researchers explore two approaches that DoD might consider as options for deterring attacks against the power grid: enhancing resilience and reliability to deter by denial and using the threat of retaliation to deter by cost imposition. The report represents a first step in developing frameworks and context to support DoD decisionmaking in this area.
Choose an application
Effective risk communication is necessary to reduce the billions of dollars in damage and hundreds of fatalities that occur yearly from floods in the United States. The purpose of this report is to help Department of Homeland Security officials identify ways to improve protective action flood guidance in response to growing flood risks that continue to cause adverse effects and threaten lives and property. Drawing on a review of academic and grey literature, authors used a conceptual framework, which was operationalized to review Federal Emergency Management Agency (FEMA)'s flood protective action guidance through the lens of a social-ecological model—comprising individual, relationship, community, and societal factors. Authors then took a broader look at risk communication best practices to collect principles that could help improve the effectiveness of flood risk communication, and developed recommendations for implementation. This study resulted in key findings and related recommendations that should help FEMA improve its flood communication strategy and messaging. First, components of the social-ecological model can be used to understand how people respond to protective action guidance and to develop a communication strategy tailored to the needs of the target audience. Second, partnering with the community can improve communication, which requires a reciprocal relationship between the organization seeking to communicate and the intended audience. Third, establishing flood messaging standards, including general readability, can help build an understanding of how messages might interact and be received by different audiences and can guide the development of messages that are more likely to result in protective action.
Floods --- Risk communication --- Emergency management --- Inondations --- Communication du risque --- Risk assessment --- Évaluation du risque --- United States
Choose an application
The importance of global health to U.S. national security was brought into sharp relief when the coronavirus disease 2019 (COVID-19) pandemic expanded exponentially in 2020 and inflicted serious and prolonged harm to the world's populations, economies, and political systems. For many national security experts, this recognition of global health's importance coincided with a belief in the value of U.S. Department of Defense (DoD) global health engagement (GHE), which encompasses a range of sometimes overlapping activities in the areas of force protection; humanitarian assistance and foreign disaster relief; nuclear, chemical, and biological defense; and building partner capacity and interoperability. However, DoD is constrained in its ability to conduct GHE activities by limitations in the way the department, as a whole, organizes, manages, and resources GHE activities and develops its workforce for GHE. Using a systematic review of the GHE literature, discussions with more than 80 subject-matter experts and officials, a review of materials from nearly 70 GHE-relevant blocks of instruction, and two GHE stakeholder workshops, the authors developed key findings and policy recommendations with respect to target student populations, GHE competencies, professional development pathways, GHE courses and course providers, and instructional strategies. In addition, they developed a concept for integrating the major GHE education and training (E&T) components and a prioritized framework for implementing the policy recommendations. This report should be of interest to members of DoD's GHE community, as well as officials and policy analysts in the larger DoD medical/health and security cooperation communities.
Choose an application
Cyber incidents are occurring with increasing frequency, and these incidents are becoming more disruptive and costlier. Some such incidents exceed stakeholders' capacity to respond using everyday means. The stakes are particularly high with respect to U.S. National Critical Functions (NCFs). Securing NCFs requires unity of effort within the federal government and effective collaboration and cooperation within state, local, tribal, and territorial (SLTT) governments and the private sector. The Cybersecurity and Infrastructure Security Agency asked the Homeland Security Operational Analysis Center (HSOAC) to develop a contingency planning implementation (how-to) guide, including a contingency plan (CONPLAN) template, that NCF stakeholders could use to develop NCF-specific CONPLANs to guide their response to and efforts to mitigate the impacts of a significant cyber incident affecting their NCFs. Summarizing key elements of the companion how-to guide, this report is intended to inform leadership and managers in NCF stakeholder organizations across government and the private sector on the purpose, components, and processes for developing an actionable CONPLAN. This report provides an overview of contingency planning for a significant cyber incident, focusing on the importance of planning, the process of developing a plan, and options for operationalizing a plan. It summarizes the major concepts that are explored in detail in the separate how-to guide.
Choose an application
The 2010 Deepwater Horizon (DWH) oil spill was the largest in U.S. history, releasing an estimated 4.9 million barrels of oil into the Gulf of Mexico. The scale of the disaster motivated diverse stakeholders to examine the human dimensions of the spill and how communities' resilience to similar threats could be improved. This examination is needed because, as long as humans depend on extracting oil and gas for energy, coastal regions are at risk for spills. In this report, the authors explore how communities, government officials, nongovernmental organizations, businesses, and scientists can build community resilience to large oil spills. Researchers found mixed evidence of distress associated with the DWH disaster and a variety of factors that affected the nature and severity of people's experiences.
Choose an application
Listing 1 - 7 of 7 |
Sort by
|