Release

UAlbany's Center for Technology in Government Partners on Critical Infrastructure Coordination Study

ALBANY, N.Y. (September 10, 2007) – The Center for Technology in Government (CTG) at the University at Albany has released Exploring Regional Telecommunication Incident Response Coordination.  The report is the result of a partnership with the New York State Department of Public Service (DPS), a key actor in the national and regional telecommunications community. Together with DPS, CTG facilitated a workshop among members of the regional telecommunications community to discuss the stewardship of our critical infrastructure in an increasingly interconnected world.

"Events such as the World Trade Center attacks and Hurricane Katrina have generated new discussions among stakeholders about the coordination necessary to ensure continuity of operation of our critical infrastructure," said Theresa Pardo, deputy director of CTG. "Neither the public nor the private sector can claim sole stewardship of the critical infrastructure, and these interdependencies require new kinds of coordination in a variety of areas, particularly in response to incidents that threaten the stability of this infrastructure."

CTG brought together representatives of telecommunications providers, state emergency management agencies, federal communications agencies, state regulatory authorities, state departments of homeland security, state cybersecurity, and the financial sector on March 28, 2007 for the one-day workshop.  The workshop participants engaged in discussions about the value proposition of coordinated response capability, explored varying perspectives on the current state of affairs, brainstormed strategies for increasing regional response capability, and concluded the session by producing a set of recommendations for next steps in exploring regional coordination.

A key aspect of the discussion was concern about duplication of effort, in particular, participants stressed that regional coordination efforts should not duplicate capabilities in either the public or private sectors. They further noted however, that currently held knowledge is not sufficient to determine where duplication might be an issue.  Participants at the workshop agreed that regional incident response requires leveraging currently held resources in innovative and potentially more efficient ways, as well as the establishment of new business processes, communication flows, and a system of governance to balance the needs of all stakeholders. In addition, trust, collaboration, and timely cross-boundary sharing are all seen as central to a new model.

A priority recommendation from the workshop calls for efforts to close this gap in current knowledge about the roles and responsibilities of individual organizations in sub-national incidents and the development of new understanding of who has what information at any point in time that could be brought to bear on incident response.

Recommendations:

 1)      Jointly establish guiding principles. Bring together key actors from across the sectors to collaboratively establish guiding principles.

 2)      Conduct current research practice regarding regional coordination of infrastructure incident response. The research should specify focus on regional coordination of telecommunications incident response, as well as models for governance and information sharing agreements of existing regional response efforts.

 3)      Increase knowledge about current information resources, practices, and capabilities, and avoid duplicating response capabilities in either the public or private sectors.

 4)      Invest in process improvements. Develop information flow models through collaborative group model building sessions to allow for shared understanding. Analysis of these models will inform decision making concerning process improvements.

 5)      Secure funding for continued exploration. A comprehensive study of potential value of regional coordination would serve as an investment in capability in, for example, the northeast region, and as a model process for other regions.

Conclusions:

1. Knowledge gaps exist. Regardless of future investments in future coordination, the gap in current knowledge about the roles and responsibilities of individual organizations in sub-national incidents needs to be addressed.

2. Roles and responsibilities remain unclear. Participants in the workshop were unclear about who is responsible at what point in time in the event of an incident. This lack of clarity about responsibility echoes findings in the President's National Security Telecommunications Committee (NSTAC) Report to the President on National Coordinating Center.

3. Currently held information resources can be leveraged. Regional incident response requires leveraging currently held information resources in innovative and potentially more efficient ways, as well as the establishment of new business processes, communication flows, and a system of governance that satisfies the needs of all stakeholders.

4. Trust and collaboration are pivotal. Trust, collaboration, and timely cross-boundary information sharing play pivotal roles in coordinated response.

5. Quality and timely data. Receiving detailed information quickly becomes especially important in regional, multi-state, or multi-jurisdictional responses. Real-time data and cross-organizational information sharing are even more significant in the smaller, localized events where only one critical infrastructure is involved. A telecommunications incident can be severely hindered if the response team lacks quality and timely data.

6. Contextual knowledge matters. Contextual knowledge of a region is imperative for decision concerning resource distribution, response time estimates, and deployment of special equipment in response to an incident.

7. National Communications System (NCS) may provide a model. The NCS roles and responsibilities as documented through the NRP is one example of information and disaster management model in the event of a national incident. The question remains, however, to what extent might a similar model be relevant when an incident is localized to either a specific geographic area or jurisdiction beneath the federal radar.

The Center for Technology in Government is an applied research center devoted to improving government and public services through policy, management, and technology innovation. The Center, located at the University at Albany, works with government to develop well-informed information strategies that foster innovation and enhances the quality and coordination of public services.



The University at Albany's broad mission of excellence in undergraduate and graduate education, research and public service engages more than 17,000 diverse students in 10 schools and colleges. For more information about this internationally ranked institution, visit the University at Albany. Visit UAlbany's extensive roster of Faculty Experts.


Please send questions or comments about the UAlbany News site to: mediarelations@uamail.albany.edu