Cyber Security CPR: Coordinated Private Response to Computer Security Incidents – Oct 12-13, 2011

Presented by The Institute for Information Infrastructure Protection (I3P) and the CERT® Program at Carnegie Mellon Universitys Software Engineering Institute

October 12-13, 2011 at the National Rural Electric Cooperative Association (NRECA) Conference Center, 4301 Wilson Blvd, Arlington, VA
Pre-Workshop Historical Perspectives Discussion: September 8 (online event)

“Hackers Breach Tech Systems of Oil Companies” New York Times, February 10, 2011

“IMF Reports Cyberattack Led to „Very Major Breach New York Times, June 11, 2011

“Nations Fight Against Cyber Intruders Goes Local” Associated Press, July 20, 2011

What happens when a cyber incident brings down something essential to public welfare?  Since many critical infrastructures are privately-owned, who is responsible for planning a response?  In what situations can government direct private enterprise to take action? These are just three of the many questions facing public and private sector practitioners, policy-makers, and researchers.  Over the last two decades, these communities have formed a new and essential collaboration: Incident Response has emerged from the shadows of IT and risk management to meet these challenges.

The I3P invites you to join a distinguished group of researchers, practitioners and security experts to:

  • Understand which scenarios call for a coordinated effort within the private sector, when to seek assistance from the public sector, and how to facilitate information sharing without compromising sensitive data.
  • Gain a better understanding of previous responses in similar situations: when they have been necessary, how they have been effective, and why were they constrained.
  • Discuss current response realities and how they intersect with technology, policy and individual organizations.
  • Identify priority research areas to enhance effective public-private incident response.
  • Recommend issues for policy makers to consider in legislation supporting incident response.

This event will engage participants by presenting response realities, sharing research ideas, brainstorming new approaches, and forming collaborative partnerships to address key challenges. We hope that you can join us.

An agenda and further details will be forthcoming. Register here, or, for more information, please contact Heather Drinan, I3P associate research director, at or 603-646-6472.