An increasing amount of the work the U.S. Department of Security dedicates to improving the cybersecurity of U.S. critical infrastructure is being performed in offices at Idaho National Labarotory (INL) in Idaho Falls, Idaho. A branch of DHS’s National Cybersecurity and Communications Integration Center (NCCIC) has run out of INL for years, and it’s now expanding into a new 80,000-square-foot building there called the Cybercore Integration Center that will hold 20 laboratories and 200 workers as well as a 67,000-square-foot building called the Collaborative Computing Center that will house one of nation’s most powerful supercomputers. The efforts here focus on the cybersecurity of operational technology (OT), such as industrial control systems (ICS), versus information technology (IT). Scott Cramer, who directs the lab’s cybersecurity program, said current efforts mostly involve “bolting on” cybersecurity protections to decades-old infrastructure control systems amid concerns they’ve already been infiltrated by malicious entities waiting for the opportune time to strike. “This is no joke — there are vulnerabilities out there. We’re pretty much in reaction mode right now,” he said. AP.

As discussed on past WaterISAC Cyber Threat Briefings (recordings and presentations available in the "Webcasts" section of the WaterISAC portal), the NCCIC hosts in-person ICS cybersecurity training at INL intended to help attendees understand, protect, and secure ICS from cyber attacks. The training includes a red team/blue team exercise conducted within an actual control systems environment. There is no tuition cost to attendees for this training. Read more about this training and upcoming convenings by visiting the NCCIC’s Training website.