OAS Secretariat for Multidimensional Security CICTE Secretariat

1. OAS Secretariat for Multidimensional Security CICTE Secretariat Disasters and Critical Infrastructure Protection

2. Agenda • Cyber Security program • Cyber study and conclusions • Initiatives • Emerging Threats program • Maritime Security program • Tourism Security • Possible future initiatives • Collaboration and partnerships www.oas.org/cyber/

3. www.oas.org/cyber/

4. Some findings www.oas.org/cyber/ Increased and attacks to critical infrastructure facilities Honeypot attacks rampant Threats show that attackers are there, inside infrastructures During a disaster, this could be leveraged to create chaos

5. Initiatives: Cyber Security CMEs • Crisis management exercises; focus on critical infrastructure and “cyber disasters” • Includes financial sector, transportation, press, energy sector, etc. • Carried out in Argentina, Colombia, Guatemala, Panama, Paraguay, Peru, Trinidad, and Uruguay, Washington DC www.oas.org/cyber/

6. Initiatives: Cyber Security CIP Workshops www.oas.org/cyber/ Held in Colombia (2012); Argentina (2013); Mexico (2014) Goal 1: Strengthen understanding of managerial officials at critical infrastructures of threats and mitigation strategies Goal 2: Teach technicians and security engineers techniques to protection critical networks in the event of a national disaster

7. Emerging Threats/Maritime Security www.oas.org/cyber/ Tabletop CM exercises (TTX): designed to promote preparedness for natural or man-made disasters Based on a bio-incident scenario which takes place at an airport. Three Stages. Debriefs include recommendations for strengthening CIP and resilience Partners: PAHO; Interpol; UN; US DHHS; FEMA; CDC TTXs for Ports: discuss vulnerabilities; responsibilities; Coordination: Who is in charge of what; up to when? Contingency planning, consequence management in six stages: Prevention, Preparedness, Mitigation, Response, Recovery, Resilience (Israel)

8. Tourism www.oas.org/cyber/ Tourism as critical infrastructure: as much as 65% of GDP in Caribbean; 163 million tourists in the Americas in 2012; worth more than $200 billion; main pillar of economy in many Member States Requires that water and food supply, transportation, communications, health, and other infrastructures are operating to acceptable norms Declaration of San Salvador for Sustainable Tourism Development in the Americas (2011). Multidimensional approach to reduce risks associated with natural and man-made disasters

9. Tourism security - programming www.oas.org/cyber/ TTXs test crisis management capabilities in response to man-made or natural disasters that affect the tourism industry and associated infrastructures Important aspect of dealing with these disasters: crisis communication Partner closely with other orgs like PAHO, the Caribbean Disaster Management Agency (CDEMA) and private sector entities

10. Possible future initiatives www.oas.org/cyber/ Development of Disaster Recovery Management Plans: Focus on multi-stakeholder approach including Critical Infrastructure operators and responders to man-made and natural disasters Technical assistance to list critical infrastructure assets to evaluate vulnerabilities, interdependencies and gaps, to prepare and implement risk-based security and resilience programs Development of legislation specific to critical infrastructure protection TTX in Bahamas New Work Plan to be developed for cooperation with Israel

11. www.oas.org/cyber/

12. www.oas.org/cyber/

13. Thank you! Pablo Martinez Programs Coordinator Inter-American Committee against Terrorism Secretariat for Multidimensional Security Organization of American States 1889 F St., NW—8th Floor Washington D.C.T: (202) 370-4972F: (202) 458-3857 PMartinez@oas.org www.oas.org/cyber/ www.oas.org/cyber/