NH-ISAC
Formation | 2010 |
---|---|
Founder | Deborah Kobza |
Purpose | Information Sharing and Analysis Center (ISAC) |
Headquarters | Astronaut Memorial Foundation Building NASA/Kennedy Space Center Kennedy Space Center, FL |
Board of Directors | |
Key people |
Jim Routh (Aetna) Terry Rice (Merck and Co.) Mike Wagner (J&J) |
Affiliations |
National Council of ISACs (NCI) Health Sector Coordinating Council (SCC) |
Website | http://www.nhisac.org/ |
National Health ISAC or (NH-ISAC) is a nonprofit organization responsible for the public and private healthcare sector's cyber security in the United States, based at The Astronaut Memorial Foundation Building NASA/Kennedy Space Center Kennedy Space Center, in Florida.
History
NH-ISAC was founded in 2010 by Deborah Kobza as a membership-sustained organization in support of the Standards Coordinating Council (SCC) information sharing environment. On February 12, 2013, the White House Press Communications office released Presidential Policy Directive (PPD) 21 to further encourage a relationship between the private and public sector to address cyber threats.[1] In order to address these cyber threats in the health care sector, NH-ISAC developed a threat intelligence platform by which information can be shared between the private and public sector regarding critical cyber threats and vulnerabilities both in cyberspace and medical devices.[2] Notable intelligence gathering tools utilized include customized SIEM solutions for Mitre Corporation's TAXII and STIX software packages,[3] Soltra Solutions and Vorstack.[4] In addition, an educational solutions program referred to as "The National Initiative for Cybersecurity Education" or "(NICE)" is offered to members, providing training and certification to cyber security professionals. NH-ISAC in a partnership with the SANS Institute also provides an annual Healthcare Cyber Security summit to inform healthcare professionals with information pertaining to recent developments in cyberspace.[5] Current membership of NH-ISAC comprises over 150 private and public-sector firms that include; health organizations, hospitals, medical device manufacturers, and health departments.[6]
Recognition
NH-ISAC is recognized by the following United States federal agencies:
- United States Department of Health and Human Services (HHS)
- United States Department of Homeland Security (DHS)
- National Security Agency (NSA)
- Federal Bureau of Investigation (FBI)
- MoU with The Food and Drug Administration (FDA)
References
- ↑ https://www.whitehouse.gov/the-press-office/2013/02/12/presidential-policy-directive-critical-infrastructure-security-and-resil
- ↑ http://www.fda.gov/AboutFDA/PartnershipsCollaborations/MemorandaofUnderstandingMOUs/OtherMOUs/ucm412565.htm
- ↑ https://taxii.mitre.org/news/index.html#february252015_TAXII_and_STIX_Mentioned_in_Article_about_the_Presidents_New_Initiative_for_Cybersecurity_Information_Sharing_on_Health_Care_Info_Security
- ↑ https://files.sans.org/summit/healthcare2014/PDFs/Information%20Sharing%20-%20STIX%20and%20TAXII%20Panel.pdf
- ↑ http://www.sans.org/event/healthcare-summit-2014/
- ↑ http://cybercoe.army.mil/index.php/technology-news/287-security-news/4624-isacs-demystified