Memorandum of Understanding | EASE and EE-ISAC
October 3, 2018 – Energy Analytic Security Exchange (EASE) and European Energy-Information Sharing & Analysis Centre (EE-ISAC) have partnered to exchange international threat intelligence that will serve to further protect the global utilities sector.
EASE and EE-ISAC will share cybersecurity and physical security information on threats against the utilities sector to support the resilience of their members’ electric grids from attacks by nation-state actors, criminals and “hacktivists.”
“While geographically separated, these two organizations both support an industry that is committed to providing reliable energy to its customers,” said Cindy Donaldson, president of Global Resilience Federation, the parent company of EASE. “Our goal is to enhance the security and resilience of that industry and EE-ISAC is on the frontlines of defense against threat actors. It is a natural partner for us given the detail and scope of information with which we want to arm our members, in support of the greater good for the sector.”
EASE, developed at the request of industry, collects and shares information from members, vendors, government and other partners. With rapid turnaround, EASE analysts provide added investigation and analysis to enrich intelligence alerts on topics spanning IT and ICS/SCADA vulnerabilities, malware attacks, terrorist activity and other threats to energy companies and the electric grid. With its partners, EASE has shared thousands of timely and actionable alerts this year, and through its automated sharing platforms has access to millions of Indicators of Compromise that are parsed into nearly 200,000 industry-specific threat indicators every month.
The EE-ISAC, founded after a European CIPS project, is the successful result of multidisciplinary cooperation reached in Europe by private operators, vendors, academy and government agencies, with the mission to achieve resilience through information sharing. The 20+ members are actively working on cybersecurity of the energy systems and critical infrastructures protection by support for the development of a community through a collaboration. Activities include sharing information on the evolution of the threat to energy infrastructures and sharing of best practices and innovative initiatives in the context of the protection of networks and industrial systems. Lastly, the EE-ISAC is developing an automatic sharing tool on the threats affecting the operators.
Working together, the two intelligence sharing bodies will broaden visibility into threats against the industry and further the security of their constituent member companies.
Energy Analytic Security Exchange (EASE) is a private sector non-profit organization that brings together energy companies to collect, analyze and share cyber and physical threat intelligence for mutual defense. EASE works with members to analyze and mitigate risks in ways that complement companies’ own efforts; from tracking systems vulnerabilities to providing in depth reporting, EASE works to enrich security product. At its most tactical, EASE analysts evaluate and disseminate signatures and indicators. At a strategic level, EASE provides reports to CSOs and CISOs while sharing cross-sector intelligence in a multi-industry defensive network of more than 7,000 organizations. Intelligence is also drawn from other ISACs and ISAOs, CERTs, government partners, and private vendors that monitor the Dark Web and geopolitical events, among other issue areas. Learn more on the EASE website, by visiting @EnergyASE on Twitter or Energy Analytic Security Exchange (EASE) on LinkedIn. Inquiries may be directed to Patrick McGlone at email@example.com.
For more information, please visit www.ee-isac.eu.
For media inquiries, please contact firstname.lastname@example.org.