Moving from a ‘REACTIVE‘ to a ‘PROACTIVE‘ security stance requires trusted national critical infrastructure (sector and cross-sector) public and private security situational awareness intelligence and nationwide information sharing.
Cyber threat intelligence itself poses a challenge in that no organization in and of itself has access to an adequate scope of relevant information for accurate situational awareness intelligence of the threat landscape. The way to overcome this limitation is via access to and sharing of relevant cyber threat intelligence, analysis, and response among trusted partners and communities represented by the nation’s officially recognized Healthcare and Public Health Information Sharing & Analysis Center, the National Health ISAC (NH-ISAC), trusted security and technology partners, the National Council of ISACs (representing all national critical infrastructures to support sector and cross-sector information sharing), government agencies, intelligence agencies (U.S. Department of Homeland Security) and law enforcement.
Through effective information sharing of actionable intelligence, each sharing partner can potentially achieve a more complete understanding of the threat landscape not only in the abstract but also at the instantial level of what specifics they can look for to identify the attacker. The threat that one organization is facing today may very well be one that other organizations will face tomorrow. This is especially true when more than one organization falls within the targeting scope of a given adversary’s campaign. If the first organization attacked can share their personal instantial knowledge of what they observed about a given threat in the form of a cyber threat (observable, indicator, threat actor, etc.), other organizations may be able to take advantage of this intellligence to address the threat proactively.
Security intelligence and information sharing for the nation’s critical infrastructures is entrusted to the nation’s official Information Sharing & Analysis Centers (ISACs). ISACs take an all-hazards approach delivering security risk mitigation, information sharing and incident response via the provision of accurate, actionable , and relevant intelligence.
National HPH Threat Information Sharing Portal (TIS)
The National Healthcare & Public Health Security Threat Information Sharing (TIS) Portal is a core component of the National Healthcare & Public Health Cybersecurity Response System ensuring and enabling intelligence-driven defense via the Soltra Edge Platform, allowing information security professionals to proactively remediate and mitigate advanced threats.
Via NH-ISAC’s strategic partnership with active ISAC’s and intelligence organizations like Brightpoint Security, Dell Secureworks, Center for Internet Security, and Symphony; our Threat Information Sharing (TIS) technology is advancing the security protection of the nation’s health sector – achieving a ‘PROACTIVE’ stance against advanced threats.