[CDP-development] CISA Releases Updated Time Guidance for Network Operators, Chief Information Officers, and Chief Information Security Officers

Tue Oct 4 08:30:02 PDT 2022

FYSA

In accordance with Executive Order (E.O.) 13905 on Strengthening National Resilience through Responsible Use of Positioning, Navigation, and Timing (PNT) Services<https://www.federalregister.gov/documents/2020/02/18/2020-03337/strengthening-national-resilience-through-responsible-use-of-positioning-navigation-and-timing>, the Cybersecurity and Infrastructure Security Agency (CISA) is working with government and industry partners to identify and promote the responsible use of positioning, navigation, and timing (PNT) services.

Today, CISA released an updated version of the Time Guidance for Network Operators, Chief Information Officers, and Chief Information Security Officers<https://www.cisa.gov/sites/default/files/publications/time_guidance_network_operators_cios_cisos_508_0.pdf>. This new guidance provides lessons learned from a tabletop exercise designed to help an organization accomplish the PNT Profile processes of identifying and protecting systems, networks, and assets; detecting and responding to an anomaly; and recovering from a disruption. The updated guidance also mentions network areas of consideration which were discovered during a pilot tabletop exercise and helps in the risk management approach with self-assessment questions (recommendations and test plan) the network operators, Chief Information Officers (CIOs), and Chief Information Security Officers (CISOs) need to walk through to create their mitigation profile.

The guide continues to include practical information, use cases, and recommendations for network operators, CIOs, and CISOs on time resilience and security practices in enterprise networks and systems. The recommendations in this document were designed to be incorporated into current test plans and regular systems maintenance and are consistent with the PNT E.O.

All critical infrastructure sectors depend on some level of precision PNT for their daily network operations. As one of 55 National Critical Functions (NCFs), the disruption, corruption, or dysfunction of a capability such as PNT, would have a debilitating effect on security, national economic security, national public health or safety, or any combination thereof.

Moving forward, CISA will continue to work with government and critical infrastructure owners and operators to strengthen the Nation’s resilience against any potential disruption or manipulation of PNT services.

Download/share the update guidance: https://www.cisa.gov/sites/default/files/publications/time_guidance_network_operators_cios_cisos_508_0.pdf

For more PNT-related information and resources, visit www.cisa.gov/pnt<http://www.cisa.gov/pnt>.

Theresa A. Masse
Cyber Security Advisor, Region 10 (Oregon)
Cybersecurity and Infrastructure Security Agency
Department of Homeland Security
Phone: (503) 930-5671
Email: theresa.masse at cisa.dhs.gov<mailto:theresa.masse at cisa.dhs.gov>

[cid:image001.png at 01D8D7CB.6F202460]

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20221004/ba6d7e46/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 16152 bytes
Desc: image001.png
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20221004/ba6d7e46/attachment-0001.png>