The Cal-CSIC is comprised of several strategic partners, the California Governor’s Office of Emergency Services, the California Department of Technology, the California Military Department, and the California Highway Patrol. Additional partners include other Federal, State, and private sector partners including the Federal Bureau of Investigation (FBI) and the United States Department of Homeland Security (DHS). Each partner provides experts to the Cal-CSIC, which serves as the central organizing hub of the State’s cybersecurity activities.
The Cal-CSIC is co-located with the California State Threat Assessment Center (STAC), which serves as the State’s primary fusion center with the responsibility to protect the State from terrorist and other physical threats. With its core partners, the Cal-CSIC has established multiple capabilities to accomplish its mission:
Cyber Incident Response Coordination
The California Cybersecurity Integration Center shall establish a Cyber Incident Response Team to serve as California’s primary unit to lead cyber threat detection, reporting, and response in coordination with public and private entities across the state.
-
This team shall also assist law enforcement agencies with primary jurisdiction for cyber-related criminal investigations and agencies responsible for advancing information security within state government.
-
This team shall be comprised of personnel from agencies, departments, and organizations represented in the California Cybersecurity Integration Center.
Information Sharing
Information sharing by the California Cybersecurity Integration Center shall be conducted in a manner that protects the privacy and civil liberties of individuals, safeguards sensitive information, preserves business confidentiality, and enables public officials to detect, investigate, respond to, and prevent cyber attacks that threaten public health and safety, economic stability, and national security.
Enables the Cal-CSIC to serve as a conduit for cybersecurity threat information between Federal, State, Local, and Tribal government entities. Advisories and Alerts are also shared with Private sector partners.
Provides the exchange of intelligence-driven cyber threat indicators between the Cal-CSIC cyber threat feeds and partner entities at machine speed, resulting in the distribution of relevant and timely cyber threat and trend information.
Phishing Email/Malware Analysis
Cal-CSIC Analysts collect and analyze phishing emails to extrapolate relevant information about the attacker and their respective tactics, called Indicators of Compromise. These IOCs are added to the California Automated Indicator Exchange to ensure timely distribution to partner entities.
|