AMERICAN CHEMISTRY COUNCIL
The American Chemistry Council (ACC) represents a diverse set of companies engaged in the business of chemistry. An innovative, $553 billion enterprise, our mission is to deliver value to our members through advocacy, member engagement, political advocacy, information sharing, communications and scientific research. The Chemical Information Technology Center (ChemITC®) of the ACC is a forum for companies to address common IT, cyber security, and security issues. Through strategic programs and networking groups dedicated to addressing specific technology issues, ChemITC is committed to advancing the use of information technology to streamline processes, manage cyber threats, and improve decision-making. www.americanchemistry.com/
The Automotive Information Sharing and Analysis Center (Auto-ISAC) is a non-profit information sharing organization that provides a trusted environment and platform for automotive manufacturers and suppliers to collaborate on cybersecurity. Founded by a global group of automakers in 2015, the Auto-ISAC is the central hub for industry-wide sharing of cyber threats, vulnerabilities, and best practices related to the connected vehicle. We embrace a working together model, engaging across the community with automotive strategic partners, trade associations, researchers and universities, and government. Membership is open to light and heavy-duty automotive manufacturers, suppliers, carriers, and fleet operators. www.automotiveisac.com
The Aviation ISAC provides an aviation-focused information sharing and analysis function to help protect global aviation businesses, operations and services. Our vision is a safe, secure, efficient, and resilient global air transportation system. The A-ISAC analyzes and shares timely, relevant and actionable cyber security information as it pertains to threats, vulnerabilities, and incidents. Also, the A-ISAC enables its members to share threats in real time, understand how to tactically combat threats and implement mitigation strategies, enhance collective sector knowledge and implement best practices. A non-profit organization, A-ISAC membership is open to trusted private sector global aviation companies.
The Communications ISAC is the operational arm of the communications sector. Also known as the DHS National Coordinating Center, the ISAC’s goal is to avert or mitigate impacts upon telecommunications infrastructure so that communication networks remain operational. As a clearinghouse for physical and cyber alerts to the telecommunications industry, the ISAC collects, analyzes and disseminates information on vulnerabilities, threats, intrusions and anomalies to carriers, ISPs, satellite providers, broadcasters, vendors and other stakeholders. The Communications ISAC operates 24/7 and is an operational component within the National Cybersecurity and Communications Integration Center.
DOWNSTREAM NATURAL GAS ISAC
The DNG ISAC serves natural gas utility (distribution) companies by facilitating communications between participants, the federal government and other critical infrastructures. Specifically, the DNG-ISAC coordinates very closely with the Electricity ISAC and shares information back and forth between electric, combination (natural gas and electric) and natural gas utilities. The DNG-ISAC promptly disseminates threat information and indicators from government and other sources and provides analysis, coordination and summarization of related industry-affecting information.
ELECTIONS INFRASTRUCTURE ISAC
Since starting in 2018, the Elections Infrastructure Information Sharing and Analysis Center (EI-ISAC) has evolved from an idea to a formalized collective of dedicated election officials, their staff members, associations, technology vendors, federal partners, and cybersecurity experts who work tirelessly to help secure the U.S. elections infrastructure. From sharing threat landscape information, to creating educational opportunities and implementing technical cybersecurity controls, the EI-ISAC’s members and staff, do everything they can to ensure the security and integrity of our elections. The EI-ISAC was conceived in 2018, as a means of leveraging the many capabilities and the infrastructure of the MS-ISAC. Both the MS-ISAC and EI-ISAC benefit by operating under the auspices of CIS® (Center for Internet Security, Inc). This allows them to work together to educate and protect U.S. State, Local, Tribal, and Territorial governments. The EI-ISAC is a voluntary and collaborative effort based on a strong partnership between CIS, the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, and the Election Infrastructure Subsector Government Coordinating Council.
The E-ISAC establishes situational awareness, incident management, coordination, and communication capabilities within the electricity sector through timely, reliable and secure information exchange. The E-ISAC, in collaboration with the Department of Energy and the Electricity Subsector Coordinating Council (ESCC), serves as the primary security communications channel for the electricity sector and enhances the sector's ability to prepare for and respond to cyber and physical threats, vulnerabilities and incidents.
EMERGENCY MANAGEMENT AND RESPONSE ISAC
Since its inception in October of 2000, the EMR‑ISAC has become a major information sharing hub for the dissemination of critical infrastructure protection and emerging threat information for the Emergency Services Sector (ESS). EMR-ISAC's mission is to collect and analyze critical infrastructure protection and resilience information having potential relevance for Emergency Services Sector departments and agencies and to synthesize and disseminate the information to leaders, owners, and operators of the emergency services. www.usfa.dhs.gov/emr-isac
FINANCIAL SERVICES ISAC
The FS-ISAC – a non-profit corporation established in 1999 and funded by its member firms – helps assure the resilience and continuity of the global financial services infrastructure through sharing threat and vulnerability information, conducting coordinated contingency planning exercises, managing rapid response communications, conducting education and training programs and fostering collaborations with and among other key sectors and government agencies.
Heathcare Ready (formerly Rx Response) helps to strengthen healthcare supply chains and enhance community resiliency by fostering collaboration between public health and the private sector and by addressing pressing issues before, during and after disasters. As the independent, nonprofit convener of industry and government, Healthcare Ready safeguards patient health by providing solutions to critical problems and sharing best practices for healthcare preparedness and response. Healthcare Ready also provides training and education to officials, policymakers, businesses and the public on the importance of building resiliency into everyday operations and activities.
The H-ISAC is a global, private sector, non-profit organization that provides a trusted community for the sharing of timely, relevant and actionable physical and cyber information among stakeholders to ensure the resilience and maintain the continuity of the health sector against cyber and physical threats, incidents, vulnerabilities and risks. Members include direct patient care providers, health information technology companies, health plan payers, medical device manufacturers, and laboratory, blood and pharmaceutical organizations.
INFORMATION TECHNOLOGY ISAC
Founded in 2000 and achieving operational capability in 2001, the IT-ISAC is a non-profit, limited liability corporation formed by members in the information technology sector as a unique and specialized forum for managing risks to their corporations and the IT infrastructure. The IT-ISAC brings provides a trusted forum for experts from the world’s leading technology companies to collaborate to defend their enterprises. IT-ISAC leverages a Threat Intelligence platform that enables automated sharing and threat analysis. Through this platform, members have access to tens of thousands of threat indicators each week. Membership in the IT-ISAC can help a company manage risks through trusted analysis, collaboration and coordination and drive informed decision making by policy makers on cybersecurity, incident response and information sharing issues. www.it-isac.org
The Maritime ISAC serves ocean carriers, cruise lines, port facilities and terminals, logistics providers, importers, exporters and related maritime industries throughout the world. Its mission is to advance the security of the U.S. and international maritime community by representing maritime interests before government bodies; acting as liaison between industry and government; disseminating timely information; encouraging and assisting in the development of industry-specific technologies; and convening educational and informational conferences for its membership and government partners.
MARITIME TRANSPORTATION SYSTEM ISAC
The Maritime Transportation System Information Sharing and Analysis Center (MTS-ISAC) is a nonprofit that was formed by maritime critical infrastructure stakeholders to address maritime cybersecurity challenges. The MTS-ISAC promotes and facilitates maritime cybersecurity information sharing, awareness, training and collaboration efforts between private and public sector stakeholders, both within the maritime sector and across other critical infrastructure sectors. Its mission is to effectively reduce cyber risk across the entire MTS community through improved identification, protection, detection, response, and recovery efforts and act as the maritime sector's actionable cyber information sharing center of excellence.
MEDIA + ENTERTAINMENT ISAC
The Media & Entertainment ISAC is the trusted, non-profit, member-driven community for enabling collaboration and intelligence sharing between content owners, producers, and distributors in the media and entertainment industries. Members consist of film, print, and radio companies producing movies, TV shows, news, newspapers, music, video games, magazines, books, and related media content. Via this community, our members are able to build better security through collectively leveraging resources to combat cyber crimes such as data breaches and malware attacks, piracy of content, physical threats towards talent, and other risks and threats that are common to all of the members of our community.
The Multi-State Information Sharing and Analysis Center (MS-ISAC) is a focal point for cyber threat protection, response and recovery for the nations State, Local, Tribal and Territorial (SLTT) governments. The MS-ISAC’s 24x7 cyber security operations center provides real-time network monitoring, early cyber threat warnings and advisories, vulnerability identification and mitigation and incident response services. The U.S. Department of Homeland Security has designated the MS-ISAC as its key cybersecurity resource for SLTTs, including Chief Information Security Officers, Homeland Security Advisors and Fusion Center Directors. The MS-ISAC membership is open to all SLTT government entities.
NATIONAL DEFENSE ISAC
The National Defense Information Sharing and Analysis Center (ND-ISAC) is the national defense sector’s non-profit organization formed to enhance the security and resiliency of the defense industry and its strategic partners. ND-ISAC provides defense sector stakeholders a community and forum for sharing cyber and physical security threat information, best practices and mitigation strategies and is developed to serve as the Defense Industrial Base (DIB) sector’s critical infrastructure protection operational coordination mechanism. Formerly known as the DIB-Information Sharing and Analysis Organization (DIB-ISAO), ND-ISAC is the umbrella organization for the Defense Security Information Exchange (DSIE), the defense sector’s cyber threat sharing center of excellence. In 2017, ND-ISAC was founded to expand the DSIE scope, and includes all-hazards threat sharing; industry-wide alerts, warning and notifications capabilities; the ability to pull together and sustain working groups across diverse subject matter areas relevant to the DIB; and the ability to develop and provide information and services supporting DIB interests. www.ndisac.org
OIL & NATURAL GAS ISAC
ONG-ISAC provides cyber threat information for the oil and natural gas industry. Its main goal is to assist in increasing the security posture of the industry’s exploration and production, transportation, refining, and delivery systems from cyber-attacks through the analysis and sharing of timely and trusted cyber intelligence. As an industry owned and operated organization, ONG-ISAC provides a mechanism for members to share information anonymously across its membership, increasing the speed, quality, and flow of cyber intelligence. www.ongisac.org
REAL ESTATE ISAC
The RE-ISAC is a non-profit organization managed by the Real Estate Roundtable to support the commercial facilities sector by facilitating information sharing on terrorist threats, warnings, incidents, vulnerabilities and response planning — to counter terrorism and protect buildings and the people who occupy and use them. The RE-ISAC works closely with members, government partners at the federal, state and local levels and across the critical infrastructure community and other partners. Members consist of the major trade organizations from the lodging, retail, gaming, multifamily housing, commercial office building, sports leagues, resorts and outdoor events subsectors as well as owners and operators of commercial properties nationwide.
RESEARCH AND EDUCATION NETWORKS ISAC
The REN-ISAC serves over 620 member institutions within the higher education and research community by promoting cybersecurity operational protections and response. The REN-ISAC member institutions benefit from Security Event System (SES) threat intelligence and other automated data collection and sharing tools to enable informed decisions about threats and events, as well as peer assessment services to improve the institution’s overall security posture. The REN-ISAC offers members daily cybersecurity news reports, alerts and advisories, analysis reports of cybersecurity threats and mitigation, and an active, interested community that provides feedback on practices and standards from subject matter experts. The REN-ISAC fosters professional training and development through monthly webinars, regional workshops, and an aggregate purchasing program with the SANS Institute. The REN-ISAC also acts as the Computer Security Incident Response Team (CSIRT) for the research and education community at large.
RETAIL AND HOSPITALITY ISAC
The RH-ISAC was formed in 2014 as the home of the Retail and Hospitality Information Sharing and Analysis Center (ISAC) and operates as a central hub for sharing sector-specific cyber security information and intelligence. The association connects information security teams at the strategic, operational and tactical levels to work together on issues and challenges, to share practices and insights, and to benchmark among each other – all with the goal of building better security for the retail and hospitality industries through collaboration. RH-ISAC currently serves companies in the retail, hospitality, gaming, travel and other consumer-facing entities.
SMALL BROADBAND ISAC
The Small Broadband Provider ISAC promotes the resiliency and continuity of operation of small network operators across the United States. They collect and disseminate threat information, indicators and mitigation strategies from a variety of public and private sources and facilitate communications among participants. Working closely with industry partners, the federal government and other stakeholders, the Small Broadband Provider ISAC helps small broadband providers recognize, analyze and respond to vulnerabilities, threats and other risks. The Small Broadband Provider ISAC is managed by NTCA–The Rural Broadband Association.
To learn more, visit www.cyber-share.org.
Launched in 2019, the Space Information Sharing and Analysis Center (Space ISAC) is the only space-dedicated ISAC and serves to facilitate collaboration across the global space industry to enhance the ability to prepare for and respond to vulnerabilities, incidents, and threats; to disseminate timely and actionable information among member entities; and to be the primary communications channel for the space sector with respect to this information. This work is made possible through collaboration of a broad membership that spans the entire horizon of the space industry, including organizations large and small involved in space supply chain, business systems, and missions. Together, Space ISAC members are leading the global space community and driving long-term space security today and into the next era by identifying and responding to threats, mitigating risks to the space mission, and regularly convening to protect the space sector and reduce operational costs through sharing threat intel, analyzing trends, and conducting workshops and training. A watch center and lab will be operational in 2024 at the Space ISAC offices, co-located with the National Cybersecurity Center in Colorado Springs, Colorado.
SURFACE TRANSPORTATION, PUBLIC TRANSPORTATION AND OVER-THE-ROAD BUS ISACS
The ST, PT and OTRB ISACs are trusted, transportation sector specific, 24/7 incident reporting and threat warning entities that establish the transportation sector's specific information/intelligence requirements for incidents, threats and vulnerabilities. Based on its sector-focused subject matter analytical expertise, the ST, PT and OTRB ISACs collect, analyze and disseminate alerts and incident reports to their membership and help the Government understand impacts for their sector. They provide an electronic trusted ability for the membership to exchange and share information on cyber, physical and natural threats in order to defend critical infrastructure.
WaterISAC, a nonprofit organization established in 2002, is the information sharing and operational arm of the U.S. water and wastewater sector. WaterISAC helps members strengthen their physical and cyber security, recover from natural and man-made disasters and improve overall preparedness and resilience. Through a secure web portal, twice-weekly e-newsletters, alerts and webinars, WaterISAC delivers a rich and thorough library of physical and cyber threat information; guidance on risk management, mitigation and resilience; contaminant databases and much more. Members include hundreds of utilities serving more than 221 million people, mainly in the U.S, but also in Canada, Australia and New Zealand, as well as other sector stakeholders.