DIB-ISAO Transition to NDISAC
On September 28, 2017, the National Defense Information Sharing and Analysis Center™ (National Defense ISAC™ or NDISAC™) merged with the Defense Industrial Base Information Sharing and Analysis Organization (DIB-ISAO), a 501(c)6 organization for cyber threat sharing and collaboration, after members voted and the Board of Directors approved the merger and the eventual dissolution of the DIB-ISAO. The Defense Security Information Exchange (DSIE), the DIB cyber threat center of excellence previously under DIB-ISAO, became the premier sharing community within NDISAC following the merger.
The National Defense Industry includes:
- Traditional Defense Industrial Base (DIB) primes,
- Their critical suppliers, many of whom may not be traditional defense contractors or exclusively defense-business oriented,
- Other critical interdependencies that provide services across all segments of industry as well as the defense sector.
DIB-ISAO members identified the security of their suppliers and interdependent commercial entities as critical to their operations as their own enterprise operations. We explored a range of services, information sharing activities, and collaborative relationships that will not only protect the interest of the traditional DIB enterprise, but that would also expand and extend protections to their suppliers and other interdependent commercial entities.
We coordinated with our members, the Department of Defense, the DIB Sector Coordinating Council, the Department of Homeland Security, the National Council of Information Sharing and Analysis Organizations, the Nation’s Information Sharing and Analysis Organization Standards Organization, and many of our peer ISAC/ISAO organizations regarding our scope and the needs of the national defense industry to find an amicable solution.
DSIE exists primarily for the traditional defense industry primes to share and collaborate on high-quality cyber security threat information and mitigation activities. DSIE has conducted those activities since 2005 in various forms:
- 2005-2007 – as an ad-hoc informal subset of the National Security Information Exchange (NSIE).
- 2007-2008 – formalized to become a working group within the National Defense Industry Association (NDIA).
- 2008-2015 – serving as both a working group within NDIA and as the operational cyber component of the DIB Sector Coordinating Council.
- 2015-2017 – amicable coordination with NDIA resulted in the formation of the DIB-ISAO doing business as DSIE.
After much deliberation, we incorporated a non-profit entity named the National Defense ISAC as a 501(c)6 organization under a set of bylaws and are currently chartering that organization to maintain the brand and scope of activities that will not only continue the legacy of DSIE, but that will expand our portfolio to include physical/industrial security, insider threat, and additional cyber security activities of value to our current members as well as other national defense industry suppliers and interdependent commercial entities. NDISAC will serve as the national defense sector’s principal focal point for all hazards to the sector.
DIB-ISAO Transition to NDISAC
The DIB-ISAO is transitioning during 2017 as follows:
- Our members voted to merge with our newly incorporated National Defense ISAC,
- Our members voted to transfer all of its assets and activities (including DSIE) into the NDISAC organization, and
- Our members voted to thereafter dissolve DIB-ISAO during CY 2018 when all business and operational activities have migrated.
Our organizational transaction captures a large amount of DSIE and DIB SCC developmental and coordination efforts and focuses them as opportunities and services for DIB suppliers. It will allow us to continue to focus and enhance services under development for the benefit of the existing DSIE member community, and to develop and provide all hazards threat information, and opportunities for enterprise risk maturity to other newly engaged and on-boarded members of the NDISAC.