January 26, 2016
WEST TRENTON, NJ – The New Jersey Cybersecurity and Communications Integration Cell (NJCCIC) and the National Healthcare Information Sharing and Analysis Center (NH-ISAC) announced today a partnership to enhance cybersecurity information sharing on behalf of New Jersey’s healthcare providers. Under the agreement, which was signed at the New Jersey Regional Operations Intelligence Center among hospital executives from across the State, the NJCCIC and NH-ISAC will exchange cyber threat indicators in automated fashion to promote shared situational awareness of adversary tools and tactics related to the healthcare sector. The agreement mandates strict data handling, classification, and disclosure protocols to protect the confidentiality of both parties’ constituents.
This partnership marks the second of its kind between the NJCCIC and a sector-specific Information Sharing and Analysis Center (ISAC). In July, the NJCCIC partnered similarly with the Financial Services ISAC to facilitate better information sharing among New Jersey’s banking institutions. Denise Anderson, President of the NH-ISAC and the Chair of the National Council of ISACs, considers this agreement a model for public-private cybersecurity partnerships at the state level.
“The ISACs have a long history of collaborating with the States and Fusion Centers,” said Anderson. “The automated sharing of indicators is another step in the evolution of information sharing and situational awareness. We are very pleased to be entering into this formal partnership with NJCCIC to share cyber threat information and we look forward to working with NJCCIC to help critical infrastructure owners and operators protect the resilience and integrity of their operations.”
“New Jersey’s healthcare sector is critical to the livelihood of our citizens and the prosperity of our local economy,” said Dr. Chris Rodriguez, Director of the New Jersey Office of Homeland Security and Preparedness, the parent agency of the NJCCIC. “Partnering with NH-ISAC to fuse our cyber intelligence sources will contribute to a far greater understanding of the threats impacting our healthcare providers.”
Both the NJCCIC and NH-ISAC will perform automated indicator sharing (AIS) to exchange and correlate cyber intelligence data from their respective organizations in real-time. “Information sharing is most effective when intelligence awareness outpaces the proliferation of threats,” said Dave Weinstein, New Jersey’s Director of Cybersecurity. “This partnership helps New Jersey and our healthcare providers keep pace with new attack methodologies as they emerge in the healthcare sector’s ever-changing technology landscape.”
The NJCCIC is New Jersey’s cybersecurity information sharing and analysis organization. As the State’s one-stop-shop for cybersecurity resources, it serves governments, businesses, and citizens across New Jersey by promoting better awareness of cyber threats and the adoption of best practices. To learn more about the NJCCIC or to become a member, please visit www.cyber.nj.gov or follow the NJCCIC on Twitter @NJCybersecurity.
The National Health Information Sharing and Analysis Center (NH-ISAC), the official healthcare information sharing and analysis center, offers non-profit and for-profit healthcare stakeholders, such as: independent hospitals, IDN “providers”, health insurance “payers”, pharmaceutical/biotech manufacturers, laboratory, diagnostic, medical device manufacturers, medical school and medical R&D organizations, a community and forum for sharing cyber and physical threat indicators, best practices and mitigation strategies. NH-ISAC is a non-profit corporation funded and owned by its members. Membership is open to any healthcare stakeholder seeking protection of valuable PHI (personal health information) and compliance with Federal HIPAA regulations and standards, driving the assurance of patient health and life safety and fostering continuity of operations. Joining the NH-ISAC is one of the best ways health and public health services firms can do their part to protect the industry and its vital role in critical infrastructure. To learn more about the NH-ISAC or to become a member, please visit www.nhisac.org.