The MS-ISAC Workgroups comprise MS-ISAC members who develop their time and talent to assist with specific program areas and deliverables in support of the MS-ISAC's goals and objectives. The Workgroups convene on a regular basis and may change as needed to accommodate MS-ISAC Member needs and areas of interest.
Business Continuity, Recovery, and Cyber Exercise
Facilitate the sharing of people, processes, tools, and best practices in regards to Public Sector Business Continuity and Recovery.
Note: Recovery is not just technology, but includes business process (people, locations, communications) i.e.: recovery of the entire entity.
Cyber Security Metrics
Focused on reccomending and implementing methodoligies to help states with cyber security metrics and compliance inventory, assessment and audit of their cyber security assets. The workgroup has been working jointly with NASCIO to support the DHS' Nationwide Cyber Security Review.
Education and Awareness
Focused on recommending development of new - or identification of existing - cyber security education, awareness and training content for states and localities. This includes recommendation of MS-ISAC program for annual National Cyber Security Awareness Month.
Industrial Control Systems (ICS)
Focused on providing a vehicle for MS-ISAC members to increase their knowledge and awareness of threats, vulnerabilities, and mitigation strategies impacting the ICS Cyber Infrastructure.
Legislative and Compliance
Focused on tracking all major legislation, rules and regulations across the country relating to cyber security issues. The workgroup has assembled a number of links and resources for further information.
This program provides an opportunity for new security leaders in management positions (such as Chief Information Security Officers and Chief Security Officers) to network and learn from the experience of current security leaders.
Focused on strategies for operational cyber security initiatives, both within the MS-ISAC, as well as at the state level. This includes recommendations of standards and procedures for incident reporting and response.