November 9, 2006 InfoGram

This InfoGram will be distributed weekly to provide members of the Emergency Services Sector with information concerning the protection of their critical infrastructures. For further information, contact the Emergency Management and Response - Information Sharing and Analysis Center (EMR-ISAC) at (301) 447-1325 or by email at emr-isac@fema.dhs.gov.

Managing Fear with CIP

Numerous security practitioners describe terrorism as the "actual or threatened violence calculated to create an atmosphere of fear and alarm," which often causes people to inflate the strength of terrorists and the threat they pose. The Emergency Management and Response-Information Sharing and Analysis Center (EMR-ISAC) suggests that the "fear and alarm" agenda of terrorists frequently works. Those many ordinary Americans who have been preoccupied with the danger of terrorist attacks provide sufficient confirmation. The EMR-ISAC proposes this is because horrifying events like 9/11 actually steer our perceptions.

Having completed over forty years of research on terrorism, Brian Michael Jenkins of the RAND Corporation explains that vivid visuals have tremendous impact, such as altering perceptions. His lessons indicate, for example, that incidents of murder resulting from gang violence are comprehensible. "But terrorist attacks are random, inexplicable tragedies, and therefore they are more frightening." People can usually elude gangs; however, countless citizens worry about how they can avoid the places that terrorists might strike. Mr. Jenkins argues that their "fear and alarm" can potentially erode confidence in all levels of government, public and private institutions, and those who are entrusted to protect people and property.

The EMR-ISAC maintains that the practice of critical infrastructure protection (CIP) by communities and their Emergency Services Sector (ESS) departments and agencies will mitigate the logical "fear and alarm" discussed by Mr. Jenkins. Activities to protect the people, physical assets, and communication/cyber systems (i.e., local critical infrastructures) can produce a positive citizen "mindset" of protection assurance and confidence in their security and prosperity. Believing this to be true, the EMR-ISAC encourages community leaders (e.g., emergency managers) to make occasional announcements. Informing the public about the genuine efforts occurring on their behalf will certainly help to improve perceptions and diminish fears. Without divulging any details useful to adversaries, local residents will appreciate knowing that CIP activities are enduring to prevent and protect against terrorism.

Discreet public announcements also have probable deterrent value. Knowing that a municipality is actively practicing CIP can create a new "mindset" among terrorists as well. It could persuade them that their actions against the community may be futile and might not produce the results they seek. This means that CIP has the possibility of altering terrorist perceptions in a manner favorable to antiterrorism and local interests.

Additional CIP Considerations

The Emergency Management and Response-Information Sharing and Analysis Center (EMR-ISAC) continues to research and study how to make critical infrastructure protection (CIP) easier and resource restrained for the departments and agencies of the Emergency Services Sector (ESS). During the ongoing information collection and analysis effort, the EMR-ISAC occasionally acquires new CIP insights, lessons learned, and best practices that have applicability for emergency response organizations.

The following insights about successful CIP practices are provided for the consideration of the leaders, owners, and operators of America's first responder organizations:

• The willingness to practice CIP is highly dependent upon the acceptance that the discipline directly affects an organization's ability to accomplish mission-essential tasks.
• The motivation to pursue CIP initiatives depends on the appreciation that the discipline is proactive, preemptive, and deterrent in nature.
• CIP is leader business that overlaps responsibilities for department or agency governance, continuity, plans, operations, information assurance, etc.
• Effective leadership does not necessitate CIP discipline expertise, but does require commitment, persuasive communications, people skills, and information sharing.
• CIP is best achieved through the everyday cooperation and actions of all organizational personnel and not just the leadership.
• CIP excellence requires clear purpose and direction to guide the strategic, operational, and tactical aspects of prevention and protection.
• The value of intradepartmental and interdepartmental relationships often exceeds expertise, command, and control in determining the quality of CIP.
• Risk-taking is an essential part of favorable CIP practices that must be balanced with organizational efforts to eliminate risks.

NIMS Guide for County Officials

County officials, especially those newly elected on 7 November 2006, can learn about their role and the roles of the Emergency Services Sector (ESS) and other county agencies, in the National Incident Management System (NIMS) Guide for County Officials - PDF, 534 Kb, produced by the National Association of Counties and the International Association of Emergency Managers.

The Emergency Management and Response - Information Sharing and Analysis Center (EMR-ISAC) reviewed the 10-page guide. The document explains NIMS compliance and adoption, how to establish a NIMS baseline, and how to implement the system. An overview of response planning, drills and exercises, resource management, and a glossary are included within.

The EMR-ISAC supports the goal of this practical guide: To help county officials understand how their agencies (ESS, public works, health, transportation, utilities, etc.) need to work together when an emergency occurs, but also with neighboring jurisdictions, state, and federal resources to fulfill the NIMS' integrated approach to incident management.

Although the 1 October 2006 deadline has passed making all federal disaster assistance contingent on states' compliance with NIMS, this no-cost and downloadable guide is still a resource useful for county officials, emergency managers, and all agencies with responsibilities regarding emergency planning, preparedness, and response.

National ESS Organizations Urge More MHz

The International Association of Fire Chiefs (IAFC) and the International Association of Chiefs of Police (IACP) are among national and state Emergency Services Sector (ESS) organizations currently rallying support for what they view as a compelling need for additional radio spectrum for emergency responders. Since communication and cyber capabilities are a major component of ESS critical infrastructures, the Emergency Management and Response-Information Sharing and Analysis Center (EMR-ISAC) examined this development.

The EMR-ISAC learned that both groups passed resolutions backing a proposal (Public Safety Broadband Trust) filed with the Federal Communications Commission (FCC). The proposal urges the FCC to allocate, and hold in trust for public safety use, 30 MHz of radio spectrum in the upper 700 MHz band. The 30 MHz would be used to develop a new broadband nationwide public safety network that could integrate data services (text messaging, photos, diagrams, and video) not currently available in existing public safety land mobile systems.

Both associations' resolutions make clear that the FCC's upcoming auction of the 30 MHz block is a one-time opportunity for the nation to create a fully interoperable, advanced nationwide public safety communications system, capable of linking every local, tribal, state, and federal responder. The IAFC and IACP point out that the existing spectrum allocations to public safety are inadequate, but that capturing the 30 MHz of contiguous spectrum may be "the last meaningful chance" to create a system that enables the ESS to fully communicate while protecting the public and maintaining the well-being and response-ability of first responders.

For more information about filed comments regarding this proposal, see the FCC Website and enter RM-11348 under "Proceeding" in the upper left block of the form. To view the IAFC resolution, vist the IAFC Website.