Information Technology: Critical Infrastructure and Key Resources Sector-Specific Plan as Input to the National Infrastructure Protection Plan

摘要

The National Infrastructure Protection Plan (NIPP) provides the unifying structure for the integration of critical infrastructures and key resources (CI/KR) protection efforts into a single national program. The NIPP provides an overall framework for integrating programs and activities that are underway in the various sectors, as well as new and developing CI/KR protection efforts. The NIPP includes 17 sector-specific plans (SSPs) that detail the application of the overall risk management framework to each specific sector. Each SSP describes a collaborative effort between the private sector; State, local, and tribal governments; nongovernmental organizations; and the Federal Government. This collaboration will result in the prioritization of protection initiatives and investments within and across sectors to ensure that resources can be applied where they contribute the most to risk mitigation by lowering vulnerabilities, deterring threats, and minimizing the consequences of attacks and other incidents. Over the past year, the Department of Homeland Security (DHS) worked closely with members of the Information Technology (IT) Government Coordinating Council (GCC), including representatives from the Departments of Commerce, Defense, Justice, State, and Treasury, the Office of the Director of National Intelligence, the Office of Management and Budget, and the National Association of State Chief Information Officers, to develop the IT SSP in partnership with the IT Sector Coordinating Council (SCC).