The Cyber Threat Intelligence Integration Center (CTIIC) is a United States federal government agency that operates as a fusion center between intelligence agencies and the private sector for real-time use against cyber attacks. CTIIC was created in the wake of the 2014 cyber attack on Sony[1] in combination with the need to establish a cyber integration center following blocked efforts in Congress that were stymied over liability and privacy concerns of citizens.[2]
Agency overview | |
---|---|
Formed | February 10, 2015 |
Jurisdiction | United States |
Agency executives |
|
Parent agency | Office of the Director of National Intelligence |
Website | https://www.dni.gov/index.php/ctiic-home |
Cyber Solarium Commission Recommendation
editThe Congressional 2020 Cyber Solarium Commission Report noted the need for improving public and private sector cyber defense efforts and included a recommendation to "Codify and Strengthen the Cyber Threat Intelligence Integration Center."[3] In it's 2024 progress report, the Commission noted that its recommendations for CTIIC had been fully implemented and "With increased budget and manpower, CTIIC will play a critical role in integrating and disseminating cyber threat intelligence across federal agencies and supporting the director of national intelligence as the federal lead for intelligence support, as named in NSM-22. CTIIC will also play a lead role as a federal integrator in cyber open-source intelligence collaboration."[4]
History and Recent Work
editCTIIC was formally announced by Lisa Monaco on February 10, 2015 at the Wilson Center.[5][6] The agency is within the Office of the Director of National Intelligence.[7]
Director of National Intelligence Avril Haines sought to revitalize CTIIC through its role in coordinating intelligence collection, analysis, and partnerships with the private sector.[8] The Director of CTIIC reports to the DNI, serves as the Intelligence Community Cyber Executive and is the DNI's principal advisor on cyber threats.[9] The Center comprises the Office of the National Intelligence Manager for Cyber, the Office of Strategic Cyber Partnerships, and the Office for Analytic Integration.[10] CTIIC's analysis on ransomware serves as the intelligence update for the International Counter Ransomware Initiative [11] [12] and was recognized at the inaugural Cyber Policy Awards sponsored by the Institute for Security and Technology.[13]
In 2024, the National Security Memorandum on Critical Infrastructure Security and Resilience stated that "In the event of significant cyber incidents involving critical infrastructure, the DNI, acting through the Director of the Cyber Threat Intelligence Integration Center, shall carry out its responsibilities as the Federal lead agency for intelligence support and related activities under PPD-41."[14] As such, ODNI's CTIIC, along with CISA and the FBI, serve as the lead agencies for coordinating national incident response to cyber incidents through the Cyber Unified Coordination Group.[15]
List of directors of the Cyber Threat Intelligence Integration Center
edit- Tonya Ugoretz (January 7, 2016 - March 13, 2019)
- Erin Joe (March 13, 2019 – July 2021)[16]
- Tom Donahue (2021 - 2022)
- Laura Galante (May 20, 2022- current)
See also
editReferences
edit- ^ https://www.engadget.com/2015-02-10-new-us-cyberwarfare-unit.html
- ^ Lamarque, Kevin (February 10, 2015). "U.S. to establish new cybersecurity agency: official". Reuters. Retrieved February 10, 2015.
- ^ https://drive.google.com/file/d/1ryMCIL_dZ30QyjFqFkkf10MxIXJGT4yv/view
- ^ https://cybersolarium.org/wp-content/uploads/2024/09/CSC2.0_Monograph_2024AnnualReport.pdf
- ^ Nakashima, Ellen (February 10, 2015). "New agency to sniff out threats in cyberspace". The Washington Post. Retrieved February 10, 2015.
- ^ "Obama administration announces new cybersecurity agency". Fox News. February 10, 2015. Archived from the original on February 10, 2015. Retrieved February 10, 2015.
- ^ Kaster, Carolyn (February 10, 2015). "Obama's New Cyber Agency Puts Spies in Charge of Sharing Threat Tips with Agencies". Nextgov. Retrieved February 13, 2015.
- ^ https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf
- ^ https://www.dni.gov/index.php/ctiic-who-we-are/ctiic-history
- ^ https://www.dni.gov/index.php/ctiic-who-we-are/ctiic-organization
- ^ https://www.whitehouse.gov/briefing-room/statements-releases/2024/10/02/international-counter-ransomware-initiative-2024-joint-statement/
- ^ https://www.politico.com/newsletters/weekly-cybersecurity/2024/09/30/cri-looks-to-outsmart-ransomware-rivals-00181596
- ^ https://securityandtechnology.org/blog/announcing-finalists-for-the-inaugural-cyber-policy-awards/
- ^ https://www.whitehouse.gov/briefing-room/presidential-actions/2024/04/30/national-security-memorandum-on-critical-infrastructure-security-and-resilience/
- ^ https://obamawhitehouse.archives.gov/the-press-office/2016/07/26/presidential-policy-directive-united-states-cyber-incident
- ^ https://www.businesswire.com/news/home/20210712005520/en/FireEye-Appoints-Erin-Joe-as-SVP-of-Strategy-and-Alliances