DHS Reestablishes Cybersecurity Partnership for Critical Infrastructure

    The Department of Homeland Security has launched ANCHOR-CI, a new initiative aimed at collaborating on critical infrastructure cybersecurity. This program replaces the Critical Infrastructure Partnership Advisory Council, enhancing public-private partnerships and offering contractors more engagement opportunities in cybersecurity.

    Department of Homeland Security, Cybersecurity and Infrastructure Security Agency, Federal Bureau of Investigation

    Key Signals

    • DHS launches ANCHOR-CI for improved cybersecurity coordination
    • CISA expands role with new governance structure in ANCHOR-CI
    • Vendors to explore engagement in federal cybersecurity initiatives

    "Previous iterations of CIPAC and the way it was operationalized leaned heavily on the idea that private sector coordinating councils were self-governed and self-organized, and the DHS Secretary and the CISA Director06managed the overall partnership structure."

    Bob Kolasky, Senior Vice President of Critical Infrastructure, Exiger

    The Department of Homeland Security (DHS), through its Cybersecurity and Infrastructure Security Agency (CISA), has initiated the Alliance of National Councils for Homeland Operational Resilience – Critical Infrastructure (ANCHOR-CI), a program designed to fortify cybersecurity information-sharing among stakeholders involved in critical infrastructure. This new initiative not only revives the functions of the prior Critical Infrastructure Partnership Advisory Council (CIPAC), but also expands its scope, emphasizing collaboration between federal, state, local, tribal, territorial, and private sector entities.

    In response to the increasing sophistication and prevalence of cyber threats, the ANCHOR-CI program aims to create an improved governance structure in which CISA assumes a larger role overseeing membership and operational procedures. A salient feature of this initiative is the exemption from public transparency laws during its meetings, which is intended to protect sensitive information shared between stakeholders. The new program is structured to last for an initial two-year period, with possibilities for extensions, suggesting a commitment to long-term cybersecurity resilience.

    The introduction of ANCHOR-CI comes amid a backdrop of heightened tensions surrounding cybersecurity and critical infrastructure protection. Previous iterations of CIPAC were criticized for lacking effective coordination with private sector stakeholders, leading to feelings of disconnect between the government and critical infrastructure owners during challenging times. According to Bob Kolasky, Senior Vice President of Critical Infrastructure at Exiger, "Previous iterations of CIPAC and the way it was operationalized leaned heavily on the idea that private sector coordinating councils were self-governed and self-organized, and the DHS Secretary and the CISA Director managed the overall partnership structure." The restructured approach of ANCHOR-CI represents a strategic shift whereby the government aims to rebuild trust with critical infrastructure industries.

    The implications of this program for procurement professionals are significant. ANCHOR-CI is expected to create increased demand for cybersecurity services and solutions as stakeholders engage in more frequent and informed discussions regarding vulnerabilities and potential threats. Companies specializing in cybersecurity solutions for critical infrastructure sectors will find opportunities to integrate their offerings into the program’s framework.

    Furthermore, organizations involved in cybersecurity should gear up for an evolving landscape of compliance requirements and governance structures, as membership protocols are modified under CISA’s oversight. This transition will facilitate enhanced interactions between public and private sectors, providing avenues for vendors to participate in critical discussions and decision-making processes regarding national cybersecurity strategies.

    Procurement teams are thus encouraged to prepare for expanded collaboration opportunities and to identify gaps in cybersecurity offerings needed to support the enhanced initiatives led by CISA. Understanding the broader strategic goals of ANCHOR-CI could enable firms to align their capabilities more effectively with government expectations and planned procurements related to critical infrastructure security.