eman2
peopleperson
IPToolsCroudsourced9041.xlsxSheet1
| Sector | Assesment tool | Protection Tool | ||||||||||
| Name | Link | Description | Pro | Cons | Other | Name | Link | Description | Pro | Cons | Other | |
| Chemical | ||||||||||||
| Preston Wolter | Chemical Security Assessment Tool (CSAT) 2.0 | https://www.dhs.gov/csat-top-screen | The Chemical Security Assessment Tool (CSAT) was developed to help the Department identify facilities that meet the criteria for high-risk chemical facilities under the Chemical Facilities Anti-Terrorism Standards (CFATS). CSAT also provides the methodologies these facilities need to conduct a Top-Screen and a Security Vulnerability Assessment, and develop a Site Security Plans. The CSAT collects data necessary to process facilities through the improved tiering methodology and improve integrate and security applications. | Comprehensive assessment tool that is reviewed by experts in the field of chemicals | Highly involved and detailed, requires large time investment to utilize effectively. Also requires users set up an account and register though the DHS. | Chemical Data Access Tool | https://java.epa.gov/oppt_chemical_search/ | The Chemcial Data Access Tool is an easily accessible database that can supply the user with information and properties of commonly used chemicals (even some uncommon). The tool is an extremely helpful database that can help protect employees health and safety, while also providing information to local community so they can prepare for a potential chemcial leak. | Easy to use and access | Only provides certain information available on the chemicals, limited response and treatment information. | ||
| Commercial Facilities | ||||||||||||
| Rohrer | ZeroFox | https://www.zerofox.com/social-media-security/ | Social Media security solution. Monitors social media for related threats to business, customers, and organizations | Provides a threat alert mechanism tailored to specific companies or facilities. | Privacy/civil liberties concerns with government, government affiliated sectors | |||||||
| Communications | ||||||||||||
| Rohrer | Mobile cellular sites | https://www.verizonwireless.com/dam/aboutus/pdfs/2012%20BC-DR%20Emergency%20Comms%20Brochure.pdf | Verizon Wireless offers emergency response support through mobile communications systems. Truck/trailer based cellular, wi-fi, and mobile radio systems can be used to support communications when infrastructure is lacking/damaged. | portable and stageable | While not a specific protection tool for the communicaitons sector, portable comms can support protection of other infrastructure in failure situations | |||||||
| Critical manufacturing | ||||||||||||
| Dams | ||||||||||||
| Radar water level detectors | http://www.waterlog.com/productsdetail.php?Radar-Series-H-3611-12-13-2 | Remote sensor for measuring water levels. Can be used to measure load on dams. | No contact with water required. works in remote areas. Rugged and low voltage requirements | Not a standalone solution. Part of a larger system | Water level sensor and controller | http://nevonprojects.com/dam-operation-based-on-water-level-project/ | Self contained water level sensor and motor controls for opening gates | Can be locally deployed for smaller projects, or as backup for larger scada systems | Not a primary system for large projects | |||
| Defense Industrial Base | ||||||||||||
| Spector 360 Employee Monitoring | http://www.spector360.com | Employee computer user activity monitoring. Serves to protect sensiitive information from insider threats | comprehensive view of employee activity on computers | requires analytic staffing. privacy issues need to be addressed through policy | ||||||||
| Emergency Services | ||||||||||||
| CFLORANZ | Teleradiology | http://www.medgadget.com/2016/11/western-europe-teleradiology-market-to-display-18-5-cagr-from-2015-to-2023.html | Teleradiology is electronic transmission of radiology images used to assist emergency services by connecting with experts. Commonly used in Europe, Teleradiology provides images of X-RAYs, MRI, and ultrasounds. This allowance responders and emergency aids to get a professional opinion. | brand new comany, has room for investors to spread company worldwide. Can connect to a team of well trained radiologist | mainly used in popular European cities. 4d and 3d companies may lower the value of this tech. Pricey | |||||||
| Energy | ||||||||||||
| AlienVault | https://www.alienvault.com/ | AlienVault’s USM is composed of a modular, scalable, three-tier architecture. There are three core components: Sensor, Server, and Logger. You can deploy them as stand-alone products or integrated in an All-in-One device. These core components provide the real-time threat detection, event correlation, and security intelligence to stay ahead of the threat | Used by various large scale corporations and government agencies. All-in-one product that is essential a complete security platform | Portions of product are open-source. This could result in malicious entities having intimate knowledge of the code and open the product up to security vulnerabilities that could be exploited by those entities. | n/a | AlienVault | https://www.alienvault.com/ | AlienVault’s USM is composed of a modular, scalable, three-tier architecture. There are three core components: Sensor, Server, and Logger. You can deploy them as stand-alone products or integrated in an All-in-One device. These core components provide the real-time threat detection, event correlation, and security intelligence to stay ahead of the threat | Used by various large scale corporations and government agencies. All-in-one product that is essential a complete security platform | Portions of product are open-source. This could result in malicious entities having intimate knowledge of the code and open the product up to security vulnerabilities that could be exploited by those entities. | n/a | |
| : RESOLVER | http://www.resolver.com/industry/critical-infrastructure/ | Protects what matters to the world's largest energy producers. Protection for both cyber- and physical security need, risk- and incident management. Its Enterprise Risk Management Software, RM:R, has prebuilt libraries, sets triggers and alerts, aggregate risk scores, flexible reporting for customized requests. | Intergration with other systems. | No pricing information | n/a | :RESOLVER | http://www.resolver.com/product/ | :Resolver risk and security software | Part of a suite of products with assessment and protection features. | No pricing information which inhibits comparison shopping | ||
| Financial Sevices | ||||||||||||
| IMPERVA | https://www.imperva.com/Products : https://www.imperva.com/Products -Tolu Jaiye | Imperva helps financial services customers around the world protect their data and business-critical infrastructure as well as satisfy regulatory compliance. Every financial institution’s public website is a critical business channel. Customers demand the ability to make transactions, open accounts or apply for loans online via your website. It’s vital that your website is always available – and protected against Distributed Denial of Service (DDoS) attacks. Industry leading DDoS protection from Imperva provides always-on, cloud-based DDoS security that automatically detects and mitigates all types of DDoS attack | Imperva helps financial services customers around the world protect their data and business-critical infrastructure as well as satisfy regulatory compliance. Every financial institution’s public website is a critical business channel. Customers demand the ability to make transactions, open accounts or apply for loans online via your website. It’s vital that your website is always available – and protected against Distributed Denial of Service (DDoS) attacks. Industry leading DDoS protection from Imperva provides always-on, cloud-based DDoS security that automatically detects and mitigates all types of DDoS attack | |||||||||
| Food and Agriculture | ||||||||||||
| Food Security Capacity Building | http://www.fao.org/in-action/food-security-capacity-building/project-components/nutrition/methods-and-tools-mapping/en/ | The project aims to provide a complete list of all resources developed by various organizations on integrated food security and nutrition programming, the resources being classified according to the different project cycle phases. The objectives of the mapping is first to inform the design of training modules, and second to help raise awareness on existing relevant (and good quality) materials and guidelines that are available for humanitarian field workers. | These resources can support practitioners working in emergencies and resilience building to better integrate the different sectors. | The program is brand new and has not been proven to work in all areas that the FDA wants to implement these strategies | The main tasks of the PTF are: to provide a platform for effective information sharing between FAO project team and partners about progress in project implementation, as well as current partners’ activities and initiatives to improve integration between food security and nutrition; | |||||||
| Government Facilities | ||||||||||||
| Radiation Portal Monitor | http://www.polimaster.com/products/radiation_portal_monitors_/ | Radiation portal monitors are gamma-neutron and neutron detectors used to screen passangers and vehicles for radioactive materials. Portal monitors canbe quickly installed at entryways and chokepoints, and elert security and emergency response personnel if radioactive material passes through. | Easy to install, reliable, sensitive, and weather resistant | Pricey | ||||||||
| Infrastructure Visualization Platform (IVP) | https://www.dhs.gov/infrastructure-visualization-platform | A data collection and presentation system, supporting critical infrastructure. Provides immersive imagery, goespatial, and hypermedia data of critical facilities, surrounding areas, transportation routes and the like during special- and national security events. | ||||||||||
| Healthcare and Public Health | ||||||||||||
| HSIN-HPH | http://www.nasemso.org/Membership | program allows for private information sharing between | Many tools including virtual | membership requirements | ||||||||
| /MemberBenefits/documents/HSIN- | different sectors including Department of Homeland | discussions, access to files, | ||||||||||
| HPHflyer.pdf | Security and Health&Human Services - a tool for | incident-specific information | ||||||||||
| communication and collaboration | ||||||||||||
| Information Technology | ||||||||||||
| CyberLens | /www.dragossecurity.com | Enable the passive discovery and id of cyber assests and | Powerful, non-intrusive on info. | Modular capability may provide abundance | Customizable, | |||||||
| data on control systems. Allows programmable logic | tech. networks. Combines visual | of choices. Pricing may be hard to | intergratable | |||||||||
| controllers and remote terminal units that are vital to CI | IP and network data. Passive | figure out. | ||||||||||
| and easy to use. | ||||||||||||
| Cyber Security Evaluation Tool (ICS) | https://ics-cert.us-cert.gov/sites/default/files/FactSheets/ICS-CERT_FactSheet_CSET_S508C.pdf | A desktop software tool that guides through Cyber security evaluation tool provies a systematic, disciplined, and repeatable approach for evaluating an organization's security posture. | ||||||||||
| Nuclear Reactors, materials and Waste | ||||||||||||
| Transportation Systems | ||||||||||||
| Scadacom | http://www.willowglensystems.com/products/scada/rail-transportation-scada/ | This is a monitoring, control reporting, and data analysis system for the train system that provides security such as CCTV. It can coordinate between multiple systems and it will help operators perform their duties more quickly and efficiently. | It is a powerful system that allows the operator perform its job and allows staff to perform system configurations with ease.User-friendly. If the system fails, it provides us with an emergency backup module. | It was made only for the rail system. Pricing is unknown. | n/a | |||||||
| Risk Management Analysis tool : Risk Management Analysis tool | is used by TSA to estimate the terrorism risk-reduction benefits attributable to new and existing security programs, technologies, and procedures. RMAT simulates terrorist behavior and success in attacking vulnerabilities in the domestic commercial air transportation system, drawing on estimates of terrorist resources, capabilities, preferences, decision processes, intelligence collection, and operational planning : is used by TSA to estimate the terrorism risk-reduction benefits attributable to new and existing security programs, technologies, and procedures. RMAT simulates terrorist behavior and success in attacking vulnerabilities in the domestic commercial air transportation system, drawing on estimates of terrorist resources, capabilities, preferences, decision processes, intelligence collection, and operational planning | RMAT has proven to be of great value to the Transportation Security Administration (TSA) in driving a more sophisticated understanding of terrorism risks to the air transportation system : RMAT has proven to be of great value to the Transportation Security Administration (TSA) in driving a more sophisticated understanding of terrorism risks to the air transportation system | RMAT may not be well suited for the kinds of exploratory analysis required for high-stakes decision support, because of its reliance on a large number of uncertain parameters and conceptual models.
: RMAT may not be well suited for the kinds of exploratory analysis required for high-stakes decision support, because of its reliance on a large number of uncertain parameters and conceptual models. |
|||||||||
|
: is used by TSA to estimate the terrorism risk-reduction benefits attributable to new and existing security programs, technologies, and procedures. RMAT simulates terrorist behavior and success in attacking vulnerabilities in the domestic commercial air transportation system, drawing on estimates of terrorist resources, capabilities, preferences, decision processes, intelligence collection, and operational planning |
: RMAT may not be well suited for the kinds of exploratory analysis required for high-stakes decision support, because of its reliance on a large number of uncertain parameters and conceptual models. |
: https://www.imperva.com/Products -Tolu Jaiye |
: Risk Management Analysis tool |
: is used by TSA to estimate the terrorism risk-reduction benefits attributable to new and existing security programs, technologies, and procedures. RMAT simulates terrorist behavior and success in attacking vulnerabilities in the domestic commercial air transportation system, drawing on estimates of terrorist resources, capabilities, preferences, decision processes, intelligence collection, and operational planning | Water and Waste Water | |||||||
| Ethernet | http://www.automation.com | a system for connecting a number of computer systems to form a local area network, with protocols to control the passing of information and to avoid simultaneous transmission by two or more systems | Ethernet Network Redundancy | impossible to guarantee absolute | n/a | |||||||
| /networking-amp-connectiv | to form a local area network that collect data that might | Flexible Fiber connectivity | security | |||||||||
| ity/building-robust-industrial | in the release of polluntants into the environment. | Increased Determinism | ||||||||||
| -ethernet-network-water-and | Network Management | |||||||||||
| -wastewater | Advanced Event Handling | |||||||||||
| High Reliabilities | ||||||||||||
| Cost Effective | ||||||||||||
