For almost 20 years, the government has facilitated the sharing of cyber threat information between federal entities and private sector organizations whose assets, systems, and proper functioning are essential to U.S. national security, economic security, and public safety. The financial sector, one of 16 sectors designated as critical by the Department of Homeland Security (DHS), would gain tremendously from the real-time sharing of highly contextualized cyber threat indicators (CTI) and defense measures (DM) between key financial institutions and government agencies.
The Defense Industrial Base (DIB) Cybersecurity (CS) program is a robust model for such public-private sharing of information and analysis. This existing arrangement between the Department of Defense (DoD) and its core contractors has advanced detection and mitigation of malicious activity on DIB and DoD networks. The program’s capabilities include DIBNet, a classified (Secret-level) web portal for real- time data exchange. INSA encourages DHS, the Department of Treasury, the Federal Bureau of Investigation (FBI), and the Secret Service to partner with financial institutions to establish a public- private cybersecurity/ information assurance (CS/IA) program unique to the financial sector. Such a program should include a portal modeled on DIBnet – “FINnet” – that enables the real-time, secure flow of classified and unclassified cyber threat data between federal and non-federal entities.
Read FINnet: A Proposal to Enhance the Financial Sector's Participation in Classified Cyber Threat Information Sharing, by downloading the paper below.DOWNLOAD