Dominion Virginia Power - Virginia Fusion Center

Intelligence Sharing Partnership

Public-Private Sector Information SharingFebruary 11, 2016

Captain Steve Lambert,

Virginia State Police

3

Overview

• Background – Virginia Fusion Center

• Evolution of Partnership

• Opportunities for Public Safety Collaboration

– Threat Environment

– Virginia Fusion Center coordination

– Public Safety Response

7

VFC Mission

Primary

Mission

Fuse together resources from

local, state, and federal agencies

and private industries to facilitate

information collection, analysis, &

sharing in order to prevent

terrorist attacks and criminal

activity

Secondary

Mission

In support of the Virginia

Emergency Operations Center

(VEOC), centralize information

and resources to provide

coordinated and effective

response in the event of an attack

Intelligence Databases

Investigative Resources

Analytical Resources

All Crimes, All Hazards Approach

Develop intelligence to support

public safety initiatives

Background

3

VFC Agencies

Cooperatively managed by the Virginia State Police and the VirginiaDepartment of Emergency Management as a component of theCriminal Intelligence Division of the Virginia State Police

Virginia State Police

(VSP)

Virginia Department

of Emergency Management

(VDEM)

Virginia Department

of Fire Programs

(VDFP)

Department of Homeland Security (DHS)

Federal Bureau of

Investigation (FBI)

Additional agencies participate as needed, either virtually or physically

Background

7

VFC Lead AgenciesBackground – Key Agencies

Virginia Department of

Emergency Management

• Long-standing relationship with

Dominion based on training and

Virginia state statutes

• Conducts required annual drill(s)

to ensure effective response to

potential incidents at either

nuclear station

• Key stakeholder in disaster

preparedness, response, and

recovery

Virginia State Police

• Long-standing relationship with

Dominion based on emergency

response and training efforts

• VSP personnel provided site

security for selected substations

following the September 11, 2001

terrorist attacks

• Administrative and field support

for potential recovery activity

involving transport of oversized

equipment

3

Protests – Criminal Activity

The VFC has

worked with

Dominion and other

critical

infrastructure

owners to minimize

disruptions from

environmental

protestors planning

to engage in

criminal conduct

since 2005

Evolution of Partnership

3

Pilot Program – Copper Theft

Evolution of Partnership

Dominion provided copper theft data to

VFC to assist VFC in a DHS – funded

Predictive Analytics Pilot

Dominion, VFC, and other agencies also

formed a work group to explore potential

legislative changes to combat metal theft.

Fusing to Fight Copper TheftSecurity Management - December 2011

Used our collective data and resources to examine the problem

and apply collective risk management and mitigation measures

towards the problem…to include strengthening existing laws and

regulatory functions:

•Energy Sector

•Scrap Metal Dealers

•Insurance Industry

•Homeowners Groups

•Police

3

DHS Infrastructure Protection Note

• (U) IP Note: Most Significant Activity Surrounding Tactics, Techniques, and Procedures Against the Electricity Subsector, March 26, 2014– Data collection from two primary reporting streams:

• Federally mandated reporting of “significant” incidents from 2011-2013

• Open source incident reporting in North American since 2002

– Analysis shows THOUSANDS of incidents in the U.S. alone• Targeting ranged from substation components to individual power

lines

• Impacts included physical damage to infrastructure to localized power outages

Substation Security Initiative

9

Metcalf Incident

On 16 April 2013, the PG&E

USPER Metcalf transmission

substation in San Jose, California,

was heavily damaged by gunfire

targeting the radiators used to cool

the transformers.

17 of 23 transformers were

damaged and taken out of service

by multiple attackers using rifles.

Despite extensive damage, no

electrical outages resulted from the

shooting due to system resilience

and ability to shift electrical loads.

10

Metcalf Tactical Considerations

• Night time incident involving a team of attackers who avoided security

cameras and motion sensors

• Enough knowledge of the facility to know which cables in which

underground vault to cut to disable the 911 emergency system and phone

lines

• Placed 120 well aimed shots in 17 of 23 electrical transformers,

• Sufficient technical knowledge to aim for the transformers’ oil filled cooling

systems

• Reportedly used night vision optics on their weapons,

• Utilized pre-staged shooting positions marked in advance,

• Employed light signals to initiate and terminate their attack, and

• Left no traceable foot prints or tire tracks behind

• May have been on-scene when law enforcement responded but did not

engage responders

9

Media Coverage and Public Response

Public commentary found on internet news sites and a variety of blogs and forums

have varied widely. Generalized commentary has included:

1. Calls for increased governmental involvement in infrastructure protection and/or

more regulations

2. Allegations of foreign-based terrorist cells, “hillbillies” and eco-terrorists

3. False flag operation to increase public support for gun control measures

4. Concerns for potential HAZMAT issues should be punished as or more harshly

than the shootings

Wall Street Journal Series:• Assault on California Power Station Raises Alarm on Potential for

Terrorism, February 18, 2014

• Transformers Expose Limits In Securing Power Grids, March 4, 2014

• U.S. Risks National Blackout From Small-Scale Attack, March 12, 2014

VSP / Dominion Partnership

12

Administrative

• Memorandum of Understanding detailing security provisions in the event of an incident(s)

Training

• LMS awareness training for sworn personnel

• Included modules for Fusion Liaison Officer program

Operational

• Area office-specific emergency response plan development

• Site visits for most critical substations

State

Federal

Local

Private

VR NI A

C EN

TERFUS

IN

OSCI E N T A E S T P O

T ENTIA

G II

Thank you

Captain Steve LambertVirginia State Police

Director, Virginia Fusion Center 804-674-2508

Helping to Secure National Critical and Commercial Infrastructure

Brief Corporate Overview

Virginia DCJS License # 11-4388

Who Is RILEEN

RITI-CO-11 15

RILEEN Innovative Technologies is a full-service electronic/physical securityand life safety systems design and consulting firm. We specialize in deliveringintegrated and innovative solutions that focus on solving complex challengesfacing our clients. Our expert services includes the security assessments ofinfrastructure, design, integration, compliance, specification development, andprogram management of state-of-the-art security systems and policies thatsupport the protection of our country’s critical infrastructure. The followinghighlights some of our offered consulting services:

• Design of Turnkey Life Safety and Security Solution• Security, Safety, Energy, Utilities, Environmental and IT Implementation• Executive Protection Planning & Design Services• Technology Business Solutions Consulting Services• Major Event Security Planning• Security/Emergency Response Exercise Planning & Coordination• Security Assessments & Response/Emergency Plan Development

Corporate Information

• RILEEN is a Federally Registered Veteran Owned Small Business (VOSB) & SBA Certified Small Business

• RILEEN is a Virginia Certified and Registered SWAM through the Virginia Department of Minority Business Enterprises (DMBE).

• RILEEN is fully licensed by the Virginia Department of Criminal Justice Services (DCJS) to provide security services and solutions.

RITI-CO-11 16

Market Sectors That Our Services Are Offered

RITI-CO-11 17

Correctional,

Mental Health,

Assisted Living

Centers

Public Utilities

&

Museums

Public/Private

Academic

Institutions

Sea & Land

Ports

Building/Facility

Protection

Transportation

Sectors

Bridges/Tunnels

Law EnforcementMajor Event

Security Planning

RILEEN

RILEEN Capabilities Overview

RITI-CO-11 18

Risk AssessmentIdentify threats and vulnerabilities

Provide threat & vulnerability assessmentsDevelop specific methodologies for the environment

Identification of critical assetsRisk mitigation strategies

Phased & scalable solution approach

Master PlansRisk assessment & plan justificationOperational policies and procedures

Security deployment strategySupervision and training

Personnel recommendationsSystems & Command Center analysis

Emergency preparedness and crisis response.

Security System DesignIntrusion detection, surveillance, access control including visitor management,

security lighting, security awareness, command center, crisis response and emergency preparedness systems. Scope of work, contractor qualifications,

material descriptions, A&E specifications for products, installation-testing and commissioning requirements, execution information, and preparation of design documents using floor plans with device locations, legends, riser diagrams, and

details.

Our Contact Information

RILEEN Innovative Technologies, Inc.582 Lynnhaven Parkway

Suite 102Virginia Beach, VA 23452

Work Tel#: 757-306-8077 Ext. 100Work Fax#: 757-306-8031

Contact: Mr. Richard A. Johnson Sr.Email: rjohnson@rileen1.com

WWW: www.rileen1.com

InfraGard

A Partnership for Protectionhttps://www.infragard.org/

An Introduction…

Norfolk Chapter

InfraGard Beginnings

InfraGard is a program of the Federal Bureau ofInvestigation that began in the Cleveland Field Office in1996. It was a local effort to gain support from theinformation technology industry and academia for theFBI’s investigative efforts.

The program expanded to other FBI Field Offices, and in1998 the FBI assigned national program responsibility forInfraGard to the former National Infrastructure ProtectionCenter (NIPC), and to the Cyber Division in 2003. In2015, InfraGard was moved to the Director of the FBI’sOffice.

“ A cooperative undertaking between the U.S.

Government (the FBI) and an association of

businesses, academic institutions, state and

local law enforcement agencies, and other

participants dedicated to increasing the

security of United States critical

infrastructures. “

What Is InfraGard?

InfraGard

• Nationally, InfraGard has over 35,000 private sector members

• 86 local chapters nationwide

• The Private Sector represents, owns, and operates approximately 85 percent of the nation’s critical infrastructures.

• We include infrastructure experts in local communities such as business executives, entrepreneurs, military and government officials, computer security professionals, members of academia, state and local law enforcement, and concerned citizens.

DHS Critical Infrastructure Sectors (16)

Chemical

Communications

Dams

Emergency Services

Financial Services

Government Facilities

Information Technology

Transportation Systems

Commercial Facilities

Critical Manufacturing

Defense Industrial Base

Energy

Food and Agriculture

Healthcare and Public Health

Nuclear Reactors, Materials, and Waste

Water and Wastewater Systems

InfraGard

• Improves information-sharing andcooperation between government andprivate industry

• Establishes meaningful liaisons at all levelsof law enforcement and private sector

• Provides threat information to InfraGardmembership via the FBI and DHS

• Encourages private sector cooperation withlaw enforcement on computer crime &other investigations.

What We Do

Norfolk InfraGard Member Alliance

• The Norfolk InfraGard Member Alliance

serves the southeastern part of Virginia,

including the Southside, Peninsula, and the

Virginia Eastern Shore. Counties covered

include:

• Norfolk, Chesapeake, Virginia Beach,

Portsmouth, Suffolk , Hampton, Newport

News, York County, James City County,

Poquoson, Williamsburg, Gloucester,

Mathews, Isle of Wright, Southampton,

Northampton, Accomack and all of Virginia’s

Eastern Shore.

National InfraGard Initiatives

• Public Website

– www.infragard.org

• Secure site

-Accessible to InfraGard members via VPN

• CyberCop Portal Access

• Annual InfraGard Congress and Conference

– For FBI Coordinators, InfraGard Chapter

Delegates and Membership

So, What is InfraGard again?

• An association of individuals, businesses,

academic institutions, and state and local

government offices supported by the FBI.

• Goal: Enable exchange of information so

that the Critical Infrastructure can be better

protected and U.S. government can better

discharge its law enforcement and national

security responsibilities

• 35,000+ members nationwide

InfraGard

Membership encompasses all infrastructures

Public Meetings held quarterly

Public & Private Website & CyberCop Portal

Join us at: http://www.infragard.org

Membership is free and the benefits to you and your community are many!

Contact us norfolk.ima@gmail.com

Thank You…